Alternatives and similar repositories for squarephish2

Users that are interested in squarephish2 are comparing it to the libraries listed below

• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆201Updated 3 months ago
• rtecCyberSec / RAITrigger
  Local SYSTEM auth trigger for relaying
  ☆168Updated 6 months ago
• decoder-it / KrbRelay-SMBServer
  ☆235Updated last year
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆164Updated last year
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆118Updated last year
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆212Updated last year
• Thunter-HackTeam / EvilentCoerce
  ☆159Updated 9 months ago
• mandiant / ccmpwn
  ☆216Updated last year
• CompassSecurity / bloodhoundce-resources
  ☆99Updated 2 months ago
• OleFredrik1 / remoteKrbRelayx
  A tool for coercing and relaying Kerberos authentication over DCOM and RPC.
  ☆146Updated 6 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆129Updated 7 months ago
• 3lp4tr0n / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆195Updated 3 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆155Updated 3 months ago
• JumpsecLabs / WALK_WebAssembly_Lure_Krafter
  A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …
  ☆99Updated last year
• kfallahi / UnderlayCopy
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆238Updated 3 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Updated 7 months ago
• logangoins / Stifle
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Updated last year
• t94j0 / adexplorersnapshot-rs
  ☆94Updated 2 months ago
• temp43487580 / EntraPassTheCert
  tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it
  ☆131Updated 5 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆103Updated 9 months ago
• decoder-it / KrbRelayEx-RPC
  ☆198Updated 10 months ago
• zyn3rgy / RelayInformer
  Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective
  ☆166Updated last month
• HackerHermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆117Updated 7 months ago
• cybersectroll / TrollAMSI
  ☆186Updated 7 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆212Updated last year
• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆188Updated last month
• synacktiv / CVE-2024-43468
  ☆94Updated last year
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆213Updated last month
• logangoins / SOAPy
  SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆160Updated 3 weeks ago
• jarnovandenbrink / getSPNless
  Python tool to automatically perform SPN-less RBCD attacks.
  ☆116Updated last month