Alternatives and similar repositories for scrying

Users that are interested in scrying are comparing it to the libraries listed below

• pwnfoo / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆496Updated last year
• nodauf / GoMapEnum
  User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin
  ☆455Updated 2 months ago
• optiv / Talon
  A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
  ☆443Updated 2 years ago
• snovvcrash / DivideAndScan
  Divide full port scan results and use it for targeted Nmap runs
  ☆326Updated last year
• capt-meelo / MassMap
  Combined port scanning w/ Masscan's speed & Nmap's scanning features.
  ☆155Updated 3 years ago
• busterb / msmailprobe
  Office 365 and Exchange Enumeration
  ☆191Updated 6 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆583Updated 6 months ago
• klezVirus / vortex
  VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
  ☆442Updated last year
• nyxgeek / ntlmscan
  scan for NTLM directories
  ☆368Updated last month
• nodauf / Girsh
  Automatically spawn a reverse shell fully interactive for Linux or Windows victim
  ☆354Updated 2 years ago
• mhaskar / DNSStager
  Hide your payload in DNS
  ☆616Updated 2 years ago
• mlgualtieri / NTLMRawUnHide
  NTLMRawUnhide.py is a Python3 script designed to parse network packet capture files and extract NTLMv2 hashes in a crackable format. The …
  ☆363Updated last year
• blackarrowsec / pivotnacci
  A tool to make socks connections through HTTP agents
  ☆714Updated 4 years ago
• ShutdownRepo / smartbrute
  Password spraying and bruteforcing tool for Active Directory Domain Services
  ☆383Updated 10 months ago
• optiv / Go365
  An Office365 User Attack Tool
  ☆641Updated last year
• horizon3ai / CVE-2021-38647
  Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)
  ☆233Updated 4 years ago
• mubix / IOXIDResolver
  IOXIDResolver.py from AirBus Security
  ☆257Updated last year
• swisskyrepo / SharpLAPS
  Retrieve LAPS password from LDAP
  ☆424Updated 4 years ago
• shifty0g / ultimate-nmap-parser
  parse nmap files
  ☆153Updated 3 months ago
• hausec / ProxyLogon
  ☆296Updated last year
• praetorian-inc / fingerprintx
  Standalone utility for service discovery on open ports!
  ☆649Updated 6 months ago
• noperator / panos-scanner
  Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.
  ☆129Updated last year
• ropnop / go-windapsearch
  Utility to enumerate users, groups and computers from a Windows domain through LDAP queries
  ☆389Updated 4 years ago
• SecurityRiskAdvisors / cmd.jsp
  A super small jsp webshell with file upload capabilities.
  ☆307Updated 4 years ago
• SecuProject / ADenum
  AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with…
  ☆303Updated 2 years ago
• ly4k / Pachine
  Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)
  ☆281Updated 3 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.
  ☆271Updated 7 months ago
• nccgroup / GTFOBLookup
  Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io), LOLBAS (https://github.com/LOLBAS-Proj…
  ☆283Updated 2 years ago
• zeronetworks / cornershot
  Amplify network visibility from multiple POV of other hosts
  ☆305Updated last year
• m0n1x90 / ADReaper
  A fast enumeration tool for Windows Active Directory Pentesting written in Go
  ☆279Updated 2 years ago