Alternatives and similar repositories for winsddl

Users that are interested in winsddl are comparing it to the libraries listed below

• jborean93 / dpapi-ng
  Python DPAPI NG Decryptor for non-Windows Platforms
  ☆62Updated 8 months ago
• jonny-jhnson / LDAPMon
  ☆45Updated last year
• usdAG / SharpLink
  Create file system symbolic links from low privileged user accounts within PowerShell
  ☆96Updated 3 years ago
• jonny-jhnson / PowerParse
  PowerShell PE Parser
  ☆63Updated last year
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆51Updated 7 months ago
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆141Updated 2 years ago
• secureworks / BAADTokenBroker
  ☆107Updated 2 months ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆163Updated this week
• CCob / PIVert
  ☆108Updated last year
• RemiEscourrou / Invoke-Leghorn
  Leghorn code for PKI abuse
  ☆32Updated 4 years ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆70Updated 5 months ago
• morRubin / PrtToCert
  ☆28Updated 5 years ago
• nccgroup / SCOMDecrypt
  SCOMDecrypt is a tool to decrypt stored RunAs credentials from SCOM servers
  ☆123Updated last year
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆128Updated 2 years ago
• dirkjanm / ROADtoken
  ☆93Updated 4 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆97Updated 2 years ago
• api0cradle / PowerAL
  A Powershell module that helps you identify AppLocker weaknesses
  ☆168Updated 5 years ago
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆64Updated 3 years ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Updated 3 years ago
• skelsec / aardwolfgui
  Asynchronous RDP/VNC client for Python (GUI)
  ☆71Updated 7 months ago
• ricardojoserf / p-invoke.net
  P/Invoke definitions from the most-of-the-time offline offline pinvoke.net. Website: https://ricardojoserf.gitbook.io/pinvoke
  ☆22Updated 5 months ago
• leechristensen / RequestAADRefreshToken
  ☆150Updated last year
• mvelazc0 / SharpShareFinder
  SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveragi…
  ☆30Updated last year
• codewhitesec / SysmonEnte
  ☆74Updated 2 years ago
• SygniaLabs / ScallOps
  ☆54Updated last year
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆92Updated 2 years ago
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆71Updated 8 months ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆57Updated 2 years ago
• 0xe7 / WonkaVision
  ☆84Updated 2 years ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆124Updated 3 years ago