puzzlepeaches/awesome-password-spraying

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/puzzlepeaches/awesome-password-spraying)

puzzlepeaches / awesome-password-spraying

Everything and anything related to password spraying

☆151

Alternatives and similar repositories for awesome-password-spraying

Users that are interested in awesome-password-spraying are comparing it to the libraries listed below

Sorting:

secgroundzero / hashslack
View on GitHub
Small utility script to notify via Slack about Hashcat's progress during a password cracking session
☆10Mar 10, 2019Updated 6 years ago
NocteDefensor / Sharelord
View on GitHub
.NET Assembly that creates network shares,sets ACE entries for directories, sets share perms, and deletes shares. Learning project for C#
☆10Oct 14, 2024Updated last year
CroodSolutions / BypassIT
View on GitHub
BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.
☆45Jul 6, 2025Updated 8 months ago
SpecterOps / cred1py
View on GitHub
A Python POC for CRED1 over SOCKS5
☆165Oct 5, 2024Updated last year
decoder-it / DFSCoerce-exe-2
View on GitHub
DFSCoerce exe revisited version with custom authentication
☆42Jan 13, 2024Updated 2 years ago
nyxgeek / trontastic_usernames
View on GitHub
top usernames from azure survey 2025
☆15Apr 25, 2025Updated 10 months ago
Flangvik / TeamFiltration
View on GitHub
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
☆1,371Oct 22, 2025Updated 4 months ago
xforcered / ADOKit
View on GitHub
Azure DevOps Services Attack Toolkit
☆313Mar 15, 2025Updated 11 months ago
mlcsec / SharpGraphView
View on GitHub
Microsoft Graph API post-exploitation toolkit
☆95Jul 13, 2024Updated last year
FalconForceTeam / SOAPHound
View on GitHub
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
☆863Feb 3, 2024Updated 2 years ago
OOAFA / squeegee
View on GitHub
A collection of tools using OCR to extract potential usernames from RDP screenshots.
☆30Apr 15, 2024Updated last year
trustedsec / CS_COFFLoader
View on GitHub
☆132Dec 4, 2023Updated 2 years ago
Diverto / IPPrintC2
View on GitHub
PoC for using MS Windows printers for persistence / command and control via Internet Printing
☆150May 3, 2024Updated last year
synacktiv / Invoke-RunAsWithCert
View on GitHub
A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
☆174May 13, 2024Updated last year
caeksec / rules
View on GitHub
Updated version of n0kovo's Rule List
☆45Jan 29, 2026Updated last month
knavesec / CredMaster
View on GitHub
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
☆1,259Mar 19, 2025Updated 11 months ago
synacktiv / captaincredz
View on GitHub
CaptainCredz is a modular and discreet password-spraying tool.
☆134Jul 22, 2025Updated 7 months ago
gavz / s4killer
View on GitHub
☆20Feb 6, 2024Updated 2 years ago
Malcrove / SeamlessPass
View on GitHub
A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
☆237Aug 25, 2024Updated last year
eversinc33 / CredGuess
View on GitHub
Generate password spraying lists based on the pwdLastSet-attribute of users.
☆55Dec 6, 2023Updated 2 years ago
wavvs / nanorobeus
View on GitHub
COFF file (BOF) for managing Kerberos tickets.
☆320Jul 2, 2023Updated 2 years ago
secureworks / family-of-client-ids-research
View on GitHub
Research into Undocumented Behavior of Azure AD Refresh Tokens
☆341Feb 23, 2024Updated 2 years ago
slygoo / pssrecon
View on GitHub
☆41Oct 8, 2024Updated last year
NocteDefensor / ludus_tailscale
View on GitHub
Ansible Role for Ludus to provision or remove a device to/from a Tailnet.
☆13Dec 5, 2025Updated 3 months ago
fastlorenzo / redelk-kibana-app
View on GitHub
Kibana app for RedELK
☆18Mar 19, 2023Updated 2 years ago
smokeme / ansible-havoc
View on GitHub
Scripts I use to deploy Havoc on Linode and setup categorization and SSL
☆41May 31, 2024Updated last year
RedByte1337 / GraphSpy
View on GitHub
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
☆1,035Dec 31, 2025Updated 2 months ago
ThePorgs / impacket
View on GitHub
Impacket is a collection of Python classes for working with network protocols.
☆303Jan 20, 2026Updated last month
CCob / okta-terrify
View on GitHub
Okta Verify and Okta FastPass Abuse Tool
☆340Sep 4, 2024Updated last year
zer0condition / mhydeath
View on GitHub
Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.
☆407Aug 22, 2023Updated 2 years ago
Leo4j / Invoke-ADEnum
View on GitHub
Active Directory Auditing and Enumeration
☆521Dec 3, 2025Updated 3 months ago
Mayyhem / Maestro
View on GitHub
Abusing Azure services over C2
☆367Jan 20, 2026Updated last month
S3cur3Th1sSh1t / SharpVeeamDecryptor
View on GitHub
Decrypt Veeam database passwords
☆222Dec 8, 2025Updated 3 months ago
MorDavid / DCSyncHound
View on GitHub
This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)
☆68Mar 17, 2025Updated 11 months ago
SaadAhla / DocPlz
View on GitHub
Documents Exfiltration project for fun and educational purposes
☆144Oct 10, 2023Updated 2 years ago
x0xr00t / Automated-MUlti-UAC-Bypass
View on GitHub
Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022
☆455Feb 19, 2026Updated 2 weeks ago
Mr-Un1k0d3r / MsGraphFunzy
View on GitHub
Scripts to interact with Microsoft Graph APIs
☆44Nov 7, 2024Updated last year
Flangvik / Bobber
View on GitHub
Bounces when a fish bites - Evilginx database monitoring with exfiltration automation
☆182Jun 9, 2024Updated last year
shreyaschavhan / advanced-sql-injection-for-awae
View on GitHub
☆206Feb 5, 2025Updated last year