Alternatives and similar repositories for ligolo-ng

Users that are interested in ligolo-ng are comparing it to the libraries listed below

• Pennyw0rth / NetExec

  View on GitHub
  The Network Execution Tool
  ☆5,250Feb 8, 2026Updated last week
• ly4k / Certipy

  View on GitHub
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆3,385Dec 3, 2025Updated 2 months ago
• Orange-Cyberdefense / GOAD

  View on GitHub
  game of active directory
  ☆7,437Jul 16, 2025Updated 6 months ago
• CravateRouge / bloodyAD

  View on GitHub
  BloodyAD is an Active Directory Privilege Escalation Framework
  ☆2,083Jan 31, 2026Updated 2 weeks ago
• BeichenDream / GodPotato

  View on GitHub
  ☆2,182Nov 24, 2023Updated 2 years ago
• p0dalirius / Coercer

  View on GitHub
  A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
  ☆2,174Jan 5, 2026Updated last month
• Flangvik / SharpCollection

  View on GitHub
  Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure …
  ☆2,765Nov 15, 2025Updated 3 months ago
• HavocFramework / Havoc

  View on GitHub
  The Havoc Framework
  ☆8,158Dec 18, 2025Updated last month
• BishopFox / sliver

  View on GitHub
  Adversary Emulation Framework
  ☆10,673Feb 8, 2026Updated last week
• GhostPack / Rubeus

  View on GitHub
  Trying to tame the three-headed dog.
  ☆4,869Nov 14, 2025Updated 3 months ago
• antonioCoco / RunasCs

  View on GitHub
  RunasCs - Csharp and open version of windows builtin runas.exe
  ☆1,338Jul 12, 2024Updated last year
• 61106960 / adPEAS

  View on GitHub
  Powershell tool to automate Active Directory enumeration.
  ☆1,279Sep 9, 2025Updated 5 months ago
• SnaffCon / Snaffler

  View on GitHub
  a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
  ☆2,722Feb 2, 2026Updated 2 weeks ago
• login-securite / DonPAPI

  View on GitHub
  Dumping DPAPI credz remotely
  ☆1,318Mar 24, 2025Updated 10 months ago
• ropnop / kerbrute

  View on GitHub
  A tool to perform Kerberos pre-auth bruteforcing
  ☆3,246Aug 20, 2024Updated last year
• itm4n / PrivescCheck

  View on GitHub
  Privilege Escalation Enumeration Script for Windows
  ☆3,685Jan 30, 2026Updated 2 weeks ago
• topotam / PetitPotam

  View on GitHub
  PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
  ☆2,175Aug 15, 2024Updated last year
• Hackplayers / evil-winrm

  View on GitHub
  The ultimate WinRM shell for hacking/pentesting
  ☆5,244Jan 9, 2026Updated last month
• Greenwolf / ntlm_theft

  View on GitHub
  A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
  ☆1,328Sep 22, 2025Updated 4 months ago
• r3motecontrol / Ghostpack-CompiledBinaries

  View on GitHub
  Compiled Binaries for Ghostpack
  ☆1,594Oct 24, 2024Updated last year
• GhostPack / Certify

  View on GitHub
  Active Directory certificate abuse.
  ☆1,911Oct 27, 2025Updated 3 months ago
• its-a-feature / Mythic

  View on GitHub
  A collaborative, multi-platform, red teaming framework
  ☆4,296Updated this week
• fortra / nanodump

  View on GitHub
  The swiss army knife of LSASS dumping
  ☆2,069Sep 17, 2024Updated last year
• lefayjey / linWinPwn

  View on GitHub
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆2,149Feb 9, 2026Updated last week
• dirkjanm / BloodHound.py

  View on GitHub
  A Python based ingestor for BloodHound
  ☆2,335Oct 24, 2025Updated 3 months ago
• dirkjanm / krbrelayx

  View on GitHub
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,526Jan 27, 2025Updated last year
• optiv / ScareCrow

  View on GitHub
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,867Aug 18, 2023Updated 2 years ago
• S3cur3Th1sSh1t / PowerSharpPack

  View on GitHub
  ☆1,665Apr 14, 2025Updated 10 months ago
• The-Viper-One / PsMapExec

  View on GitHub
  Dominate Active Directory with PowerShell.
  ☆1,162Nov 28, 2025Updated 2 months ago
• GhostPack / Seatbelt

  View on GitHub
  Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensi…
  ☆4,475Jan 10, 2025Updated last year
• RedTeamPentesting / pretender

  View on GitHub
  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
  ☆1,256Dec 9, 2025Updated 2 months ago
• DominicBreuker / pspy

  View on GitHub
  Monitor linux processes without root permissions
  ☆5,871Jan 17, 2023Updated 3 years ago
• Kevin-Robertson / Inveigh

  View on GitHub
  .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
  ☆2,903Nov 19, 2025Updated 2 months ago
• fortra / impacket

  View on GitHub
  Impacket is a collection of Python classes for working with network protocols.
  ☆15,448Updated this week
• dirkjanm / PKINITtools

  View on GitHub
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆876Jan 3, 2025Updated last year
• netero1010 / EDRSilencer

  View on GitHub
  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …
  ☆1,813Nov 3, 2024Updated last year
• S1ckB0y1337 / Active-Directory-Exploitation-Cheat-Sheet

  View on GitHub
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆6,487Jan 18, 2026Updated 3 weeks ago
• FalconForceTeam / SOAPHound

  View on GitHub
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆855Feb 3, 2024Updated 2 years ago
• S3cur3Th1sSh1t / Amsi-Bypass-Powershell

  View on GitHub
  This repo contains some Amsi Bypass methods i found on different Blog Posts.
  ☆2,127Nov 28, 2024Updated last year