Alternatives and similar repositories for GMSAPasswordReader

Users that are interested in GMSAPasswordReader are comparing it to the libraries listed below

• zer1t0 / certi
  ADCS abuser
  ☆302Updated 2 years ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆276Updated 2 years ago
• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆179Updated 4 years ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆280Updated 4 years ago
• ly4k / PetitPotam
  Python implementation for PetitPotam
  ☆212Updated 3 years ago
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆123Updated 5 years ago
• mdsecactivebreach / Farmer
  ☆398Updated 4 years ago
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆280Updated 4 years ago
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆261Updated this week
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆253Updated 5 months ago
• Hackndo / sprayhound
  Password spraying tool and Bloodhound integration
  ☆244Updated 8 months ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆236Updated 3 years ago
• Z4kSec / Masky
  Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
  ☆398Updated last month
• ly4k / BloodHound
  Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements
  ☆157Updated 3 years ago
• micahvandeusen / gMSADumper
  Lists who can read any gMSA password blobs and parses them if the current user has access.
  ☆331Updated last year
• icyguider / MoreImpacketExamples
  More examples using the Impacket library designed for learning purposes.
  ☆265Updated 2 years ago
• NetSPI / ESC
  Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…
  ☆299Updated 2 years ago
• fortalice / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆360Updated last year
• fashionproof / EnableAllTokenPrivs
  ☆90Updated 5 years ago
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆124Updated last year
• PShlyundin / ldap_shell
  AD ACL abuse
  ☆344Updated this week
• nyxgeek / ntlmscan
  scan for NTLM directories
  ☆368Updated last month
• trustedsec / orpheus
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆399Updated 5 months ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆168Updated 3 years ago
• latortuga71 / TortugaToolKit
  Collection of some of my own tools with other great open source tools out there packaged into a powershell module
  ☆145Updated 2 years ago
• mandiant / ADFSpoof
  ☆405Updated 3 months ago
• cfalta / PoshADCS
  A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)
  ☆191Updated 4 years ago
• samratashok / RACE
  RACE is a PowerShell module for executing ACL attacks against Windows targets.
  ☆231Updated 2 years ago
• dirkjanm / forest-trust-tools
  Proof-of-concept tools for my AD Forest trust research
  ☆223Updated last year
• GoSecure / pywsus
  Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.
  ☆322Updated 2 years ago