Alternatives and similar repositories for gMSADumper:

Users that are interested in gMSADumper are comparing it to the libraries listed below

• ShutdownRepo / targetedKerberoast
  Kerberoast with ACL abuse capabilities
  ☆406Updated 2 months ago
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆247Updated 4 years ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆260Updated 2 years ago
• xct / hashgrab
  generate payloads that force authentication against an attacker machine
  ☆103Updated 2 years ago
• rvazarkar / GMSAPasswordReader
  ☆208Updated 2 years ago
• PShlyundin / ldap_shell
  AD ACL abuse
  ☆279Updated this week
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆264Updated 3 years ago
• Octoberfest7 / OSEP-Tools
  ☆234Updated 2 years ago
• ly4k / BloodHound
  Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements
  ☆145Updated 2 years ago
• Hackndo / sprayhound
  Password spraying tool and Bloodhound integration
  ☆221Updated last month
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆116Updated 9 months ago
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆309Updated 2 years ago
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆412Updated last month
• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆167Updated 4 years ago
• zer1t0 / certi
  ADCS abuser
  ☆270Updated 2 years ago
• latortuga71 / TortugaToolKit
  Collection of some of my own tools with other great open source tools out there packaged into a powershell module
  ☆143Updated 2 years ago
• AlmondOffSec / PassTheCert
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆596Updated 7 months ago
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆242Updated 3 months ago
• sosdave / KeyTabExtract
  Extracts Key Values from .keytab files
  ☆240Updated 4 years ago
• giuliano108 / SeBackupPrivilege
  Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to
  ☆334Updated 11 years ago
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆223Updated last year
• wavestone-cdt / powerpxe
  Powershell script to extract information from boot PXE
  ☆139Updated 5 years ago
• ivanitlearning / Juicy-Potato-x86
  Juicy Potato for x86 Windows
  ☆117Updated 5 years ago
• 0xjpuff / reverse_shell_splunk
  A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.
  ☆70Updated 6 years ago
• tothi / rbcd-attack
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆518Updated 2 years ago
• Hackndo / pyGPOAbuse
  Partial python implementation of SharpGPOAbuse
  ☆392Updated last year
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆103Updated 5 years ago
• expl0itabl3 / Toolies
  Ad hoc collection of Red Teaming & Active Directory tooling.
  ☆181Updated last year
• Z4kSec / Masky
  Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
  ☆384Updated 10 months ago
• dirkjanm / PKINITtools
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆692Updated last month