ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets by identifying active user profiles on domain machines.
☆163May 4, 2026Updated last month
Alternatives and similar repositories for profilehound
Users that are interested in profilehound are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PowerShell SharePoint extraction + auditing tool for red/blue/purple teams. Enumerates all SharePoint sites/drives a user can access via …☆165Jan 25, 2026Updated 4 months ago
- ☆24Sep 6, 2025Updated 9 months ago
- A BOF for enumerating version information for DLLs associated for a Beacon process.☆16Nov 23, 2021Updated 4 years ago
- A Pentesters Confluence Keyword Scanner☆20Dec 3, 2024Updated last year
- Kibana app for RedELK☆18Mar 19, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- dcsync bof☆52Feb 13, 2026Updated 4 months ago
- Go (formerly PowerShell) collector for adding MSSQL attack paths to BloodHound with OpenGraph☆333Jun 8, 2026Updated last week
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆306May 11, 2026Updated last month
- An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface. Implementation of ligolo-ng into sliver☆30Feb 27, 2025Updated last year
- Let's make quick work of GraphQL instances ;)☆26Mar 8, 2026Updated 3 months ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆401Sep 26, 2025Updated 8 months ago
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆134Dec 2, 2023Updated 2 years ago
- Python tool to automatically perform SPN-less RBCD attacks.☆130Jan 7, 2026Updated 5 months ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Apr 14, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack te…☆101Dec 23, 2025Updated 5 months ago
- Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…☆123Dec 7, 2025Updated 6 months ago
- Collection of many ldap bofs for domain enumeration and privilege escalation. Created for use with the Adaptix C2.☆99Dec 15, 2025Updated 6 months ago
- A BloodHound collector for Microsoft Configuration Manager☆401Jul 7, 2025Updated 11 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆648May 8, 2025Updated last year
- Open-source offensive security platform for conducting phishing campaigns that weaponizes iCalendar automatic event processing.☆267Dec 18, 2025Updated 5 months ago
- ☆388Oct 17, 2025Updated 7 months ago
- Windows security research toolkit for LPE, persistence, COM hijacking, and attack surface enumeration.☆164Updated this week
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆405Jan 14, 2026Updated 5 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆43Dec 4, 2025Updated 6 months ago
- Bring runZero Exposure Management into BloodHound☆48Apr 16, 2026Updated last month
- Cobalt Strike BOF☆58Dec 10, 2025Updated 6 months ago
- ☆28Mar 24, 2026Updated 2 months ago
- ☆159Dec 13, 2024Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆79Feb 8, 2023Updated 3 years ago
- gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…☆358Apr 28, 2026Updated last month
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆377Mar 24, 2026Updated 2 months ago
- EDR-Redir : a tool used to redirect the EDR's folder to another location.☆238May 23, 2026Updated 3 weeks ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Red Team Coin for crypto-mining operations.☆24Mar 1, 2026Updated 3 months ago
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆22Feb 20, 2025Updated last year
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆264Feb 21, 2025Updated last year
- Microsoft Network Service Fingerprinting Tool☆71Jan 2, 2026Updated 5 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆60Apr 10, 2026Updated 2 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆165Oct 21, 2025Updated 7 months ago
- Extract data from modern Chrome versions, including refresh tokens, cookies, saved credentials, autofill data, browsing history, and book…☆556Jan 8, 2026Updated 5 months ago