Alternatives and similar repositories for ShareHound

Users that are interested in ShareHound are comparing it to the libraries listed below

• 1r0BIT / TaskHound
  Tool to enumerate privileged Scheduled Tasks on Remote Systems
  ☆205Updated last week
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆280Updated this week
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆179Updated 2 months ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆268Updated 3 weeks ago
• MorDavid / vCenterHound
  Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges
  ☆171Updated 3 months ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆249Updated 2 weeks ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Updated 5 months ago
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆255Updated 9 months ago
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆204Updated last year
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆210Updated 5 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆194Updated last week
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆278Updated 7 months ago
• logangoins / SOAPy
  SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆152Updated 4 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆242Updated last month
• zh54321 / SnafflerParser
  Parses Snaffler output file and generate beautified outputs.
  ☆111Updated 10 months ago
• trustedsec / specula
  ☆227Updated 6 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆180Updated 6 months ago
• kfallahi / UnderlayCopy
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆227Updated last month
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆162Updated 7 months ago
• decoder-it / KrbRelay-SMBServer
  ☆229Updated last year
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆224Updated last year
• ShutdownRepo / dcshadow
  Python alternative to Mimikatz lsadump::dcshadow
  ☆155Updated 5 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆184Updated 7 months ago
• NeffIsBack / wsuks
  Automating the MITM attack on WSUS
  ☆279Updated last month
• CCob / Shwmae
  ☆160Updated 10 months ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆208Updated last year
• synacktiv / gpoParser
  gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…
  ☆306Updated 3 months ago
• CompassSecurity / bloodhoundce-resources
  ☆85Updated last week
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆267Updated last year
• synacktiv / ntdissector
  ☆163Updated 5 months ago