praetorian-inc/NTLMRecon external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

praetorian-inc/NTLMRecon

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/praetorian-inc/NTLMRecon)

Close

praetorian-inc / NTLMReconView on GitHubMore

• External links
• Readme badge

A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.

☆114Dec 11, 2023Updated 2 years ago

Alternatives and similar repositories for NTLMRecon

Users that are interested in NTLMRecon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• praetorian-inc / ADFSRelay

  View on GitHub
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆186Jun 22, 2022Updated 3 years ago
• ZephrFish / SCCMSiteCodeHunter

  View on GitHub
  ☆16Dec 7, 2025Updated 3 months ago
• pwnfoo / NTLMRecon

  View on GitHub
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆507Sep 23, 2025Updated 6 months ago
• a7t0fwa7 / DllDragon

  View on GitHub
  A simple to use single-include Windows API resolver
  ☆23Jul 9, 2024Updated last year
• nettitude / ETWHash

  View on GitHub
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆258May 10, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• slygoo / pssrecon

  View on GitHub
  ☆41Oct 8, 2024Updated last year
• Jumbo-WJB / SharpSniper-Modify

  View on GitHub
  query specific user and login IP from remote machine
  ☆18Nov 19, 2022Updated 3 years ago
• OtterHacker / CoffLoader

  View on GitHub
  ☆61Jan 9, 2023Updated 3 years ago
• ajpc500 / RelayRumbler

  View on GitHub
  A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.
  ☆17Jul 2, 2021Updated 4 years ago
• jfjallid / go-lsass

  View on GitHub
  Tool to aid in dumping LSASS process remotely
  ☆42Sep 23, 2025Updated 6 months ago
• soufianetahiri / CitrixSecureAccessAuthCookieDump

  View on GitHub
  Dump Citrix Secure Access auth cookie from the process memory
  ☆76Jun 24, 2022Updated 3 years ago
• fin3ss3g0d / CosmicRakp

  View on GitHub
  CVE-2013-4786 Go exploitation tool
  ☆40Nov 18, 2025Updated 4 months ago
• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆95Mar 8, 2023Updated 3 years ago
• improsec / BackupOperatorToolkit

  View on GitHub
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆180Feb 14, 2023Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• NotMedic / NetNTLMtoSilverTicket

  View on GitHub
  SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
  ☆932Jul 26, 2021Updated 4 years ago
• dirkjanm / adidnsdump

  View on GitHub
  Active Directory Integrated DNS dumping by any authenticated user
  ☆1,148Apr 4, 2025Updated 11 months ago
• Sagar-Jangam / DNSUpdate

  View on GitHub
  A python based script to update DNS entries in ADIDNS
  ☆43Apr 12, 2024Updated last year
• ceramicskate0 / SharpExchange

  View on GitHub
  C# Tool to interact with MS Exchange based on MS docs
  ☆102Dec 7, 2022Updated 3 years ago
• SevenStones / auditpolCIS

  View on GitHub
  CIS Benchmark testing of Windows SIEM configuration
  ☆45May 25, 2023Updated 2 years ago
• xforcered / SoaPy

  View on GitHub
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆262Feb 21, 2025Updated last year
• Bl4ckM1rror / KerberoShutdown

  View on GitHub
  ☆18Aug 1, 2022Updated 3 years ago
• t3hbb / PanGP_Extractor

  View on GitHub
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆89Dec 23, 2024Updated last year
• garrettfoster13 / scomhunter

  View on GitHub
  ☆35Mar 18, 2026Updated last week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• MzHmO / TGSThief

  View on GitHub
  My implementation of the GIUDA project in C++
  ☆189Jul 25, 2023Updated 2 years ago
• inzlain / sameuser

  View on GitHub
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Jul 13, 2022Updated 3 years ago
• code-scan / DirGo

  View on GitHub
  Dirfuzz by golang
  ☆15Feb 28, 2023Updated 3 years ago
• S3cur3Th1sSh1t / Ruy-Lopez

  View on GitHub
  ☆319Jun 28, 2023Updated 2 years ago
• Accenture / Codecepticon

  View on GitHub
  .NET/PowerShell/VBA Offensive Security Obfuscator
  ☆520Feb 1, 2024Updated 2 years ago
• foxlox / GIUDA

  View on GitHub
  Ask a TGS on behalf of another user without password
  ☆482Mar 30, 2025Updated 11 months ago
• grimlockx / ADCSKiller

  View on GitHub
  An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
  ☆740May 19, 2023Updated 2 years ago
• skelsec / kerberoast

  View on GitHub
  Kerberoast attack -pure python-
  ☆433Nov 30, 2023Updated 2 years ago
• ByteJunkies-co-uk / Metsubushi

  View on GitHub
  Generate droppers with encrypted payloads automatically.
  ☆54Nov 16, 2021Updated 4 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• FuzzySecurity / Dendrobate

  View on GitHub
  Managed code hooking template.
  ☆135Nov 19, 2021Updated 4 years ago
• xyplex3 / RedTeamCoin

  View on GitHub
  Red Team Coin for crypto-mining operations.
  ☆23Mar 1, 2026Updated 3 weeks ago
• fortalice / modifyCertTemplate

  View on GitHub
  ADCS cert template modification and ACL enumeration
  ☆143Jun 26, 2023Updated 2 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 3 years ago
• S3cur3Th1sSh1t / SharpVeeamDecryptor

  View on GitHub
  Decrypt Veeam database passwords
  ☆222Dec 8, 2025Updated 3 months ago
• Hagrid29 / BOF-SprayAD

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
  ☆47Mar 4, 2023Updated 3 years ago
• zimnyaa / grpcssh

  View on GitHub
  A simple reverse ssh/proxy implant PoC for *nix systems.
  ☆57Jul 5, 2024Updated last year