Alternatives and similar repositories for ntlmscan:

Users that are interested in ntlmscan are comparing it to the libraries listed below

• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆221Updated 3 years ago
• busterb / msmailprobe
  Office 365 and Exchange Enumeration
  ☆183Updated 5 years ago
• Hackndo / sprayhound
  Password spraying tool and Bloodhound integration
  ☆220Updated last month
• samratashok / RACE
  RACE is a PowerShell module for executing ACL attacks against Windows targets.
  ☆215Updated last year
• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆167Updated 4 years ago
• tothi / rbcd-attack
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆518Updated 2 years ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆260Updated 2 years ago
• trustedsec / orpheus
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆377Updated 2 years ago
• mandiant / ADFSpoof
  ☆362Updated 6 months ago
• NetSPI / ESC
  Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…
  ☆286Updated last year
• awsmhacks / awsmBloodhoundCustomQueries
  Collection of cyphers for bloodhound
  ☆148Updated 7 months ago
• micahvandeusen / gMSADumper
  Lists who can read any gMSA password blobs and parses them if the current user has access.
  ☆259Updated last year
• mdsecactivebreach / Farmer
  ☆363Updated 3 years ago
• RedSiege / EDD
  Enumerate Domain Data
  ☆325Updated last year
• zer1t0 / certi
  ADCS abuser
  ☆270Updated 2 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆166Updated 2 years ago
• PShlyundin / ldap_shell
  AD ACL abuse
  ☆279Updated this week
• rvazarkar / GMSAPasswordReader
  ☆208Updated 2 years ago
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆223Updated last year
• skelsec / msldap
  LDAP library for auditing MS AD
  ☆404Updated last week
• BC-SECURITY / Invoke-ZeroLogon
  Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…
  ☆215Updated 4 years ago
• optiv / Talon
  A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
  ☆438Updated last year
• trustedsec / SeeYouCM-Thief
  ☆186Updated last year
• oldboy21 / SMBSR
  Lookup for interesting stuff in SMB shares
  ☆149Updated last year
• outflanknl / Spray-AD
  A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.
  ☆431Updated 2 years ago
• gremwell / o365enum
  Enumerate valid usernames from Office 365 using ActiveSync, Autodiscover v1, or office.com login page.
  ☆255Updated 9 months ago
• CasperGN / ActiveDirectoryEnumeration
  Enumerate AD through LDAP with a collection of helpfull scripts being bundled
  ☆141Updated last month
• ly4k / PetitPotam
  Python implementation for PetitPotam
  ☆193Updated 3 years ago
• Z4kSec / Masky
  Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
  ☆384Updated 10 months ago
• ShutdownRepo / targetedKerberoast
  Kerberoast with ACL abuse capabilities
  ☆406Updated 2 months ago