Alternatives and similar repositories for server-untrust-account

Users that are interested in server-untrust-account are comparing it to the libraries listed below

• secureworks / primary-refresh-token-viewer

  View on GitHub
  ☆11Oct 24, 2022Updated 3 years ago
• icyguider / DumpNParse

  View on GitHub
  A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0.
  ☆152Nov 21, 2021Updated 4 years ago
• 0xsp-SRD / MDE_Enum

  View on GitHub
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆212Jun 10, 2024Updated last year
• frkngksl / HintInject

  View on GitHub
  A PoC project for embedding shellcode to Hint/Name Table
  ☆113May 16, 2022Updated 3 years ago
• Tw1sm / RITM

  View on GitHub
  Roast in the Middle
  ☆295Sep 19, 2025Updated 4 months ago
• ZephrFish / ADFSDump-PS

  View on GitHub
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆38Dec 7, 2025Updated 2 months ago
• Dramelac / GoldenCopy

  View on GitHub
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆102May 6, 2024Updated last year
• S3cur3Th1sSh1t / SharpVeeamDecryptor

  View on GitHub
  Decrypt Veeam database passwords
  ☆222Dec 8, 2025Updated 2 months ago
• Wh04m1001 / IFaultrepElevatedDataCollectionUAC

  View on GitHub
  ☆133Oct 14, 2022Updated 3 years ago
• ShutdownRepo / ShadowCoerce

  View on GitHub
  MS-FSRVP coercion abuse PoC
  ☆305Dec 30, 2021Updated 4 years ago
• decoder-it / BadBackupOperator

  View on GitHub
  ☆37Feb 12, 2018Updated 8 years ago
• clod81 / shellcode_runner_copy_in_chunk

  View on GitHub
  C# loader that copies a chunk at the time of the shellcode in memory, rather that all at once
  ☆23Jul 14, 2022Updated 3 years ago
• eversinc33 / SharpStartWebclient

  View on GitHub
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆77Feb 8, 2023Updated 3 years ago
• oldboy21 / SWAPPALA

  View on GitHub
  In-memory hiding technique
  ☆63Jan 5, 2025Updated last year
• bugch3ck / SharpLdapWhoami

  View on GitHub
  WhoAmI by asking the LDAP service on a domain controller.
  ☆64Feb 8, 2022Updated 4 years ago
• pkb1s / SharpRelay

  View on GitHub
  ☆181Feb 3, 2021Updated 5 years ago
• Semperis / GoldenGMSA

  View on GitHub
  GolenGMSA tool for working with GMSA passwords
  ☆167Aug 21, 2025Updated 5 months ago
• whydee86 / SnD_AMSI

  View on GitHub
  Start new PowerShell without etw and amsi in pure nim
  ☆157Feb 14, 2022Updated 4 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 2 years ago
• Corissalea / KQL-and-Workbooks

  View on GitHub
  Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!
  ☆21Aug 23, 2024Updated last year
• YOLOP0wn / POSTDump

  View on GitHub
  ☆341Nov 10, 2025Updated 3 months ago
• MaorSabag / impacket-jump

  View on GitHub
  Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…
  ☆119Dec 7, 2025Updated 2 months ago
• snovvcrash / RemoteRegSave

  View on GitHub
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆41Dec 8, 2023Updated 2 years ago
• ADPunisher / OwnershipStealer

  View on GitHub
  ☆27May 1, 2023Updated 2 years ago
• CCob / DRSAT

  View on GitHub
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆273Dec 27, 2024Updated last year
• ricardojoserf / NativeDump

  View on GitHub
  Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)
  ☆698May 7, 2025Updated 9 months ago
• 0xsp-SRD / 0xsp.com

  View on GitHub
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆64Dec 26, 2024Updated last year
• p0dalirius / pydsinternals

  View on GitHub
  A Python native library containing necessary classes, functions and structures to interact with Windows Active Directory.
  ☆70Feb 1, 2026Updated last week
• tothi / rbcd-attack

  View on GitHub
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆610Aug 15, 2025Updated 6 months ago
• cube0x0 / KrbRelay

  View on GitHub
  Framework for Kerberos relaying
  ☆939May 29, 2022Updated 3 years ago
• nccgroup / Change-Lockscreen

  View on GitHub
  Offensive tool to trigger network authentications as SYSTEM
  ☆144Dec 9, 2021Updated 4 years ago
• slyd0g / XORShellcodeLoader

  View on GitHub
  Loads shellcode from a resource file.
  ☆22Aug 15, 2019Updated 6 years ago
• CompassSecurity / PowerLsassSilentProcessExit

  View on GitHub
  ☆27Feb 3, 2026Updated last week
• Luct0r / KerberOPSEC

  View on GitHub
  OPSEC safe Kerberoasting in C#
  ☆198Jun 14, 2022Updated 3 years ago
• soufianetahiri / CitrixSecureAccessAuthCookieDump

  View on GitHub
  Dump Citrix Secure Access auth cookie from the process memory
  ☆76Jun 24, 2022Updated 3 years ago
• zyn3rgy / LdapRelayScan

  View on GitHub
  Check for LDAP protections regarding the relay of NTLM authentication
  ☆532Nov 19, 2024Updated last year
• ShutdownRepo / pywhisker

  View on GitHub
  Python version of the C# tool for "Shadow Credentials" attacks
  ☆851Feb 1, 2026Updated last week
• Dec0ne / ShadowSpray

  View on GitHub
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆482Oct 14, 2022Updated 3 years ago
• EncodeGroup / SharpDirLister

  View on GitHub
  .NET 4.0 Fast Directory / File Lister
  ☆27Sep 25, 2020Updated 5 years ago