Alternatives and similar repositories for Active-Directory-Recon:

Users that are interested in Active-Directory-Recon are comparing it to the libraries listed below

• IAMinZoho / OFFSEC-PowerShell
  My Favorite Offensive Security Scripts
  ☆69Updated last year
• AssuranceMaladieSec / AD-description-password-finder
  Retrieve AD accounts description and search for password in it
  ☆83Updated 2 years ago
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆61Updated last year
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆107Updated 2 months ago
• powerseb / PowerExtract
  ☆117Updated last year
• mertdas / SharpLateral
  Lateral Movement
  ☆123Updated last year
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆169Updated 2 years ago
• Helixo32 / GetSystem-LCI
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆32Updated 4 months ago
• garrettfoster13 / aced
  ☆158Updated 4 months ago
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆38Updated last year
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆61Updated 2 years ago
• CCob / gssapi-abuse
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆150Updated last year
• n3t1nv4d3 / ADRedTeamEnumScript
  Traditional AD RedTeam Full Enumeration Script used to query all aspects of your target Forest.
  ☆43Updated 9 months ago
• JoelGMSec / AzureGraph
  Azure AD enumeration over MS Graph
  ☆80Updated 2 years ago
• HernanRodriguez1 / MimikatzFUD
  ☆96Updated 2 years ago
• ananth-she11z / AutoSQL
  A tool to enumerate and exploit SQL Servers in AD
  ☆34Updated last year
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆55Updated last year
• sse-secure-systems / Active-Directory-Spotlights
  ☆36Updated last year
• S3cur3Th1sSh1t / SharpVeeamDecryptor
  Decrypt Veeam database passwords
  ☆156Updated last year
• p0dalirius / ldapconsole
  The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.
  ☆64Updated last month
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆60Updated 2 months ago
• h4wkst3r / ADOKit
  Azure DevOps Services Attack Toolkit
  ☆141Updated 2 weeks ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• asmtlab / ADHunt
  Tool for enumerating Active Directory environments
  ☆46Updated last year
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆121Updated 3 years ago
• arth0sz / Practice-AD-CS-Domain-Escalation
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆123Updated last year
• SpecterOps / bloodhound-cli
  ☆47Updated this week
• 0xBallpoint / LOAD
  Lord Of Active Directory - automatic vulnerable active directory on AWS
  ☆141Updated last year
• myexploit / living_off_the_land
  ☆43Updated 8 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆160Updated 3 months ago