Alternatives and similar repositories for TargetAllDomainObjects

Users that are interested in TargetAllDomainObjects are comparing it to the libraries listed below

• p0dalirius / ldapconsole
  The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.
  ☆64Updated 6 months ago
• p0dalirius / pydsinternals
  A Python native library containing necessary classes, functions and structures to interact with Windows Active Directory.
  ☆66Updated 6 months ago
• p0dalirius / MSRPRN-Coerce
  A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).
  ☆26Updated 6 months ago
• p0dalirius / LimeSurvey-webshell-plugin
  A webshell plugin and interactive shell for pentesting a LimeSurvey application.
  ☆21Updated 9 months ago
• p0dalirius / DomainUsersToXLSX
  Extract all users from an Active Directory domain to an Excel worksheet.
  ☆32Updated 6 months ago
• S3cur3Th1sSh1t / SharpVeeamDecryptor
  Decrypt Veeam database passwords
  ☆159Updated last year
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆75Updated 2 years ago
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆56Updated last year
• lefayjey / SharpSQLPwn
  C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
  ☆111Updated 3 years ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated 2 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆50Updated 4 months ago
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆125Updated 2 years ago
• slygoo / pssrecon
  ☆36Updated 10 months ago
• Sq00ky / RunAsPasswd
  A RunAs clone with the ability to specify the password as an argument.
  ☆112Updated 2 years ago
• n00py / GetFGPP
  Get Fine Grained Password Policy
  ☆73Updated 4 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆83Updated 11 months ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆32Updated 2 years ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆118Updated last year
• p0dalirius / Hashes-Harvester
  Automatically extracts NT and LM hashes from Windows memory dumps based on volatility.
  ☆26Updated last year
• p0dalirius / FindAzureDomainTenant
  A Python script to find tenant id an region from a list of domain names.
  ☆15Updated 6 months ago
• Tw1sm / aesKrbKeyGen
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆61Updated 3 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 2 years ago
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆58Updated last month
• JonasBK / Powershell
  ☆42Updated 6 months ago
• p0dalirius / AccountShadowTakeover
  A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.
  ☆22Updated last year
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆40Updated last year
• decoder-it / NewMachineAccount
  ☆35Updated 6 months ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆40Updated last year
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆56Updated 3 years ago
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆34Updated 2 years ago