seriotonctf/cme-nxc-cheat-sheet external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

seriotonctf/cme-nxc-cheat-sheet

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/seriotonctf/cme-nxc-cheat-sheet)

Close

seriotonctf / cme-nxc-cheat-sheetView on GitHubMore

• External links
• Readme badge

A cheatsheet for NetExec

☆205Jun 9, 2025Updated 11 months ago

Alternatives and similar repositories for cme-nxc-cheat-sheet

Users that are interested in cme-nxc-cheat-sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Pennyw0rth / NetExec-Lab

  View on GitHub
  Lab used for workshop and CTF
  ☆517Feb 3, 2026Updated 4 months ago
• seriotonctf / kerberos_aes_key

  View on GitHub
  Generate AES128 and AES256 Kerberos keys from a given username, password, and realm
  ☆18Sep 18, 2024Updated last year
• The-Viper-One / PsMapExec

  View on GitHub
  Dominate Active Directory with PowerShell.
  ☆1,188Nov 28, 2025Updated 6 months ago
• aleemladha / SANS-Workshop-Lab

  View on GitHub
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆37Nov 12, 2025Updated 6 months ago
• CravateRouge / bloodyAD

  View on GitHub
  BloodyAD is an Active Directory Privilege Escalation Framework
  ☆2,204May 13, 2026Updated 3 weeks ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• aniqfakhrul / powerview.py

  View on GitHub
  Powerview on steroids
  ☆948May 22, 2026Updated 2 weeks ago
• 61106960 / adPEAS

  View on GitHub
  Powershell tool to automate Active Directory enumeration.
  ☆1,327Updated this week
• arth0sz / Practice-AD-CS-Domain-Escalation

  View on GitHub
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆142Sep 4, 2023Updated 2 years ago
• janweis / Active-Directory-Delegation-Powershell-Wizard

  View on GitHub
  🛡️ Assign AD permissions via PowerShell templates — Simplify and standardize AD delegation with reusable PowerShell templates.
  ☆30Apr 12, 2026Updated last month
• YasserREED / screen-v4.5.0-priv-escalate

  View on GitHub
  Updated GNU Screen 4.5.0 Exploit: This repository hosts an enhanced exploit for GNU Screen 4.5.0, optimized for Kali Linux 2024. It inclu…
  ☆23Jun 10, 2024Updated last year
• CravateRouge / autobloody

  View on GitHub
  Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound
  ☆692Oct 23, 2025Updated 7 months ago
• synacktiv / GPOddity

  View on GitHub
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆366Dec 13, 2025Updated 5 months ago
• Pennyw0rth / NetExec

  View on GitHub
  The Network Execution Tool
  ☆5,587Updated this week
• ShutdownRepo / targetedKerberoast

  View on GitHub
  Kerberoast with ACL abuse capabilities
  ☆653Dec 16, 2024Updated last year
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• seriotonctf / Red-Team-Notes

  View on GitHub
  ☆92May 29, 2026Updated last week
• Offensive-Panda / ShadowDumper

  View on GitHub
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆576May 22, 2025Updated last year
• safedv / RustiveDump

  View on GitHub
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆387Apr 26, 2025Updated last year
• ricardojoserf / TrickDump

  View on GitHub
  Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
  ☆557May 9, 2025Updated last year
• AlmondOffSec / PassTheCert

  View on GitHub
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆755Sep 3, 2025Updated 9 months ago
• Bitnet / Bitnet-labs

  View on GitHub
  Offensive Security & Red Teaming Labs and Projects
  ☆27Aug 26, 2025Updated 9 months ago
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆134Dec 2, 2023Updated 2 years ago
• p0dalirius / smbclient-ng

  View on GitHub
  smbclient-ng, a fast and user friendly way to interact with SMB shares.
  ☆1,036Apr 17, 2026Updated last month
• nicocha30 / ligolo-ng

  View on GitHub
  An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
  ☆4,608Feb 15, 2026Updated 3 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mandiant / ccmpwn

  View on GitHub
  ☆221Mar 26, 2024Updated 2 years ago
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆384Dec 13, 2024Updated last year
• Yaxxine7 / ASRepCatcher

  View on GitHub
  Make everyone in your VLAN ASRep roastable
  ☆258Oct 7, 2025Updated 8 months ago
• xct / SeManageVolumeAbuse

  View on GitHub
  SeManageVolumePrivilege to SYSTEM
  ☆153Nov 22, 2023Updated 2 years ago
• RedTeamPentesting / pretender

  View on GitHub
  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
  ☆1,289Apr 23, 2026Updated last month
• k4nfr3 / WFP_EDR

  View on GitHub
  ☆14Apr 24, 2026Updated last month
• 0xdea / blindsight

  View on GitHub
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆248Mar 9, 2026Updated 2 months ago
• decoder-it / KrbRelayEx

  View on GitHub
  ☆388Oct 17, 2025Updated 7 months ago
• lefayjey / linWinPwn

  View on GitHub
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆2,178May 18, 2026Updated 3 weeks ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• seriotonctf / shellcat

  View on GitHub
  ☆18Sep 22, 2024Updated last year
• sensepost / goLAPS

  View on GitHub
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆88Mar 6, 2025Updated last year
• CrowdStrike / sccmhound

  View on GitHub
  A BloodHound collector for Microsoft Configuration Manager
  ☆401Jul 7, 2025Updated 11 months ago
• jsecu / ModTask

  View on GitHub
  ☆52Mar 30, 2026Updated 2 months ago
• TheManticoreProject / DescribeNTSecurityDescriptor

  View on GitHub
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
  ☆49Oct 4, 2025Updated 8 months ago
• sensepost / CVE-2025-64446

  View on GitHub
  A scanner for the FortiNet vulnerability CVE-2025-64446
  ☆31Nov 18, 2025Updated 6 months ago
• Offensive-Panda / LsassReflectDumping

  View on GitHub
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆217Oct 19, 2024Updated last year