Alternatives and similar repositories for scrying

Users that are interested in scrying are comparing it to the libraries listed below

• snovvcrash / DivideAndScan
  Divide full port scan results and use it for targeted Nmap runs
  ☆324Updated last year
• pwnfoo / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆491Updated last year
• optiv / Talon
  A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
  ☆442Updated last year
• nodauf / GoMapEnum
  User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin
  ☆449Updated last month
• capt-meelo / MassMap
  Combined port scanning w/ Masscan's speed & Nmap's scanning features.
  ☆153Updated 3 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆572Updated 5 months ago
• klezVirus / vortex
  VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
  ☆441Updated last year
• busterb / msmailprobe
  Office 365 and Exchange Enumeration
  ☆189Updated 6 years ago
• nyxgeek / ntlmscan
  scan for NTLM directories
  ☆364Updated 2 months ago
• mlgualtieri / NTLMRawUnHide
  NTLMRawUnhide.py is a Python3 script designed to parse network packet capture files and extract NTLMv2 hashes in a crackable format. The …
  ☆356Updated last year
• horizon3ai / CVE-2021-38647
  Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)
  ☆234Updated 3 years ago
• ropnop / go-windapsearch
  Utility to enumerate users, groups and computers from a Windows domain through LDAP queries
  ☆385Updated 4 years ago
• nodauf / Girsh
  Automatically spawn a reverse shell fully interactive for Linux or Windows victim
  ☆356Updated 2 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.
  ☆268Updated 6 months ago
• blackarrowsec / pivotnacci
  A tool to make socks connections through HTTP agents
  ☆711Updated 4 years ago
• swisskyrepo / SharpLAPS
  Retrieve LAPS password from LDAP
  ☆417Updated 4 years ago
• optiv / Go365
  An Office365 User Attack Tool
  ☆638Updated last year
• hausec / ProxyLogon
  ☆295Updated last year
• SecuProject / ADenum
  AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with…
  ☆303Updated 2 years ago
• krabelize / icmpdoor
  ICMP Reverse Shell written in Python 3 and with Scapy (backdoor/rev shell)
  ☆352Updated 11 months ago
• mubix / IOXIDResolver
  IOXIDResolver.py from AirBus Security
  ☆254Updated last year
• alt3kx / CVE-2021-21985_PoC
  ☆215Updated 2 years ago
• ShutdownRepo / smartbrute
  Password spraying and bruteforcing tool for Active Directory Domain Services
  ☆382Updated 9 months ago
• ly4k / Pachine
  Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)
  ☆279Updated 3 years ago
• h4x0r-dz / RCE-Exploit-in-BIG-IP
  ☆206Updated 4 years ago
• mhaskar / DNSStager
  Hide your payload in DNS
  ☆613Updated 2 years ago
• h4wkst3r / SCMKit
  Source Code Management Attack Toolkit
  ☆219Updated 2 years ago
• cnotin / SplunkWhisperer2
  Local privilege escalation, or remote code execution, through Splunk Universal Forwarder (UF) misconfigurations
  ☆254Updated 2 years ago
• ffuf / pencode
  Complex payload encoder
  ☆228Updated last year
• horizon3ai / CVE-2022-1388
  POC for CVE-2022-1388
  ☆232Updated 3 years ago