Alternatives and similar repositories for shellcat:

Users that are interested in shellcat are comparing it to the libraries listed below

• Lucreza / WinDefExclusionFinder
  Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
  ☆21Updated 2 months ago
• nowak0x01 / Drupalwned
  Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…
  ☆40Updated last year
• Edd13Mora / NetWrapper
  Simple netexec wraper with html repport
  ☆17Updated 8 months ago
• tehstoni / Sublime-Nmap-Syntax
  A Sublime Text plugin that allows for Nmap syntax highlighting
  ☆13Updated 4 months ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆58Updated 3 months ago
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆55Updated last year
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆40Updated 2 months ago
• LuemmelSec / Moodle-Scanner
  A Moodle Scanner
  ☆38Updated 2 months ago
• V-i-x-x / Offsec-Certification-Resources
  Learning resources and external resources to help you prepare for your offsec certifications
  ☆52Updated 2 months ago
• ASP4RUX / bypassEDR-AV
  ☆54Updated 2 months ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆139Updated last year
• alperenugurlu / AD_Enumeration_Hunt
  ☆92Updated last year
• nowak0x01 / WPXStrike
  WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…
  ☆64Updated last year
• W0rty / libcurl-crlf
  ☆13Updated last year
• 0xBienCuit / InfraRed-AWS
  ☆56Updated 3 months ago
• sinsinology / CVE-2024-29849
  Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)
  ☆86Updated 7 months ago
• websecnl / MagicByteSelector
  Burp Suite Extension for inserting a magic byte into responder's request
  ☆21Updated last year
• t3l3machus / ACEshark
  ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…
  ☆65Updated this week
• nollium / CVE-2024-50340-eos-exploit
  Exploit for Symfony CVE-2024-50340 (forked eos)
  ☆27Updated last month
• Drakiat / Checker
  A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.
  ☆44Updated 10 months ago
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆72Updated 2 months ago
• magisterquis / curlrevshell
  Kooky cURL-powered replacement for reverse shell via /dev/tcp
  ☆64Updated this week
• AD-Attacks / Active-Directory-Penetration-Testing
  ☆17Updated 8 months ago
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆60Updated 7 months ago
• asmtlab / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆92Updated 2 months ago
• g0h4n / RDE1
  RDE1 (Rusty Data Exfiltrator) is client and server tool allowing auditor to extract files from DNS and HTTPS protocols written in Rust. �…
  ☆40Updated last year
• iPhantasmic / OSWP
  Notes and cheatsheets for the OffSec Wireless Professional (OSWP) certification
  ☆30Updated last year
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆44Updated 3 months ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆101Updated 7 months ago