seriotonctf/cme-nxc-cheat-sheet external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

seriotonctf/cme-nxc-cheat-sheet

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/seriotonctf/cme-nxc-cheat-sheet)

Close

seriotonctf / cme-nxc-cheat-sheetView on GitHubMore

• External links
• Readme badge

A cheatsheet for NetExec

☆203Jun 9, 2025Updated 11 months ago

Alternatives and similar repositories for cme-nxc-cheat-sheet

Users that are interested in cme-nxc-cheat-sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Pennyw0rth / NetExec-Lab

  View on GitHub
  Lab used for workshop and CTF
  ☆516Feb 3, 2026Updated 3 months ago
• seriotonctf / kerberos_aes_key

  View on GitHub
  Generate AES128 and AES256 Kerberos keys from a given username, password, and realm
  ☆18Sep 18, 2024Updated last year
• The-Viper-One / PsMapExec

  View on GitHub
  Dominate Active Directory with PowerShell.
  ☆1,185Nov 28, 2025Updated 5 months ago
• aleemladha / SANS-Workshop-Lab

  View on GitHub
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆37Nov 12, 2025Updated 6 months ago
• CravateRouge / bloodyAD

  View on GitHub
  BloodyAD is an Active Directory Privilege Escalation Framework
  ☆2,186Updated this week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• murat-exp / SAPLAR

  View on GitHub
  SAPLAR - LFI & Path Traversal Scanner
  ☆15Mar 11, 2025Updated last year
• aniqfakhrul / powerview.py

  View on GitHub
  Powerview on steroids
  ☆940Updated this week
• arth0sz / Practice-AD-CS-Domain-Escalation

  View on GitHub
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆143Sep 4, 2023Updated 2 years ago
• 61106960 / adPEAS

  View on GitHub
  Powershell tool to automate Active Directory enumeration.
  ☆1,312May 7, 2026Updated last week
• janweis / Active-Directory-Delegation-Powershell-Wizard

  View on GitHub
  🛡️ Assign AD permissions via PowerShell templates — Simplify and standardize AD delegation with reusable PowerShell templates.
  ☆30Apr 12, 2026Updated last month
• YasserREED / screen-v4.5.0-priv-escalate

  View on GitHub
  Updated GNU Screen 4.5.0 Exploit: This repository hosts an enhanced exploit for GNU Screen 4.5.0, optimized for Kali Linux 2024. It inclu…
  ☆21Jun 10, 2024Updated last year
• CravateRouge / autobloody

  View on GitHub
  Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound
  ☆689Oct 23, 2025Updated 6 months ago
• synacktiv / GPOddity

  View on GitHub
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆366Dec 13, 2025Updated 5 months ago
• Pennyw0rth / NetExec

  View on GitHub
  The Network Execution Tool
  ☆5,517May 12, 2026Updated last week
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• ShutdownRepo / targetedKerberoast

  View on GitHub
  Kerberoast with ACL abuse capabilities
  ☆648Dec 16, 2024Updated last year
• esidate / pentesting-active-directory

  View on GitHub
  Active Directory pentesting mind map
  ☆523May 26, 2023Updated 2 years ago
• seriotonctf / Red-Team-Notes

  View on GitHub
  ☆93May 1, 2026Updated 2 weeks ago
• Offensive-Panda / ShadowDumper

  View on GitHub
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆576May 22, 2025Updated 11 months ago
• safedv / RustiveDump

  View on GitHub
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆388Apr 26, 2025Updated last year
• ricardojoserf / TrickDump

  View on GitHub
  Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
  ☆555May 9, 2025Updated last year
• AlmondOffSec / PassTheCert

  View on GitHub
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆743Sep 3, 2025Updated 8 months ago
• Bitnet / Bitnet-labs

  View on GitHub
  Offensive Security & Red Teaming Labs and Projects
  ☆27Aug 26, 2025Updated 8 months ago
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆131Dec 2, 2023Updated 2 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• p0dalirius / smbclient-ng

  View on GitHub
  smbclient-ng, a fast and user friendly way to interact with SMB shares.
  ☆1,032Apr 17, 2026Updated last month
• nicocha30 / ligolo-ng

  View on GitHub
  An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
  ☆4,542Feb 15, 2026Updated 3 months ago
• mandiant / ccmpwn

  View on GitHub
  ☆221Mar 26, 2024Updated 2 years ago
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆385Dec 13, 2024Updated last year
• Yaxxine7 / ASRepCatcher

  View on GitHub
  Make everyone in your VLAN ASRep roastable
  ☆256Oct 7, 2025Updated 7 months ago
• xct / SeManageVolumeAbuse

  View on GitHub
  SeManageVolumePrivilege to SYSTEM
  ☆151Nov 22, 2023Updated 2 years ago
• RedTeamPentesting / pretender

  View on GitHub
  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
  ☆1,281Apr 23, 2026Updated 3 weeks ago
• k4nfr3 / WFP_EDR

  View on GitHub
  ☆13Apr 24, 2026Updated 3 weeks ago
• 0xdea / blindsight

  View on GitHub
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆247Mar 9, 2026Updated 2 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• decoder-it / KrbRelayEx

  View on GitHub
  ☆387Oct 17, 2025Updated 7 months ago
• lefayjey / linWinPwn

  View on GitHub
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆2,176Updated this week
• seriotonctf / shellcat

  View on GitHub
  ☆18Sep 22, 2024Updated last year
• ar0x4 / ysoserial.net-docker

  View on GitHub
  ysoserial.net docker image
  ☆30Sep 23, 2024Updated last year
• sensepost / goLAPS

  View on GitHub
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆88Mar 6, 2025Updated last year
• CrowdStrike / sccmhound

  View on GitHub
  A BloodHound collector for Microsoft Configuration Manager
  ☆401Jul 7, 2025Updated 10 months ago
• jsecu / ModTask

  View on GitHub
  ☆52Mar 30, 2026Updated last month