Alternatives and similar repositories for zerologon

Users that are interested in zerologon are comparing it to the libraries listed below

• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆49Updated 3 weeks ago
• blurbdust / ldd2bh
  Convert ldapdomaindump to Bloodhound
  ☆80Updated last year
• NinjaStyle82 / rbcd_permissions
  Add SD for controlled computer object to a target object for RBCD using LDAP
  ☆38Updated 3 years ago
• sensepost / thumbscr-ews
  Exchangelib wrapper for pentesting
  ☆64Updated 3 months ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆55Updated 3 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆80Updated last year
• 0xe7 / RoastInTheMiddle
  ☆71Updated last year
• n00py / GetFGPP
  Get Fine Grained Password Policy
  ☆70Updated last month
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆32Updated 2 years ago
• maninwire / nimLoader
  load dumped csharp binaries as assemblies and launch them in memory
  ☆26Updated last year
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆53Updated 3 years ago
• thelikes / sharpsh
  C# .Net Framework program that uses RunspaceFactory for Powershell command execution.
  ☆17Updated 2 years ago
• Tw1sm / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆18Updated this week
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆101Updated 2 years ago
• snovvcrash / OffensivePipeline
  OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
  ☆91Updated 3 years ago
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆90Updated last year
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆38Updated last year
• aress31 / clm-rout
  A C# program featuring an all-in-one bypass for CLM, AppLocker and AMSI using Runspace.
  ☆18Updated 2 years ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆74Updated 2 years ago
• GoSecure / ldap-scanner
  Checks for signature requirements over LDAP
  ☆97Updated 2 years ago
• 0xe7 / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆42Updated last month
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆49Updated 2 years ago
• knavesec / o365fedenum
  Federated Office365 user enumeration based on correlated response trend analysis
  ☆51Updated 3 years ago
• SolomonSklash / RubeusToCcache
  A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket
  ☆55Updated 5 years ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆38Updated 9 months ago
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆50Updated 8 months ago
• snovvcrash / peas
  Modified version of PEAS client for offensive operations
  ☆41Updated 2 years ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆67Updated 10 months ago
• Teach2Breach / dev
  maldev obviously
  ☆26Updated last week
• Dfte / Impersonate
  Binary and CrackMapExec module to impersonate tokens on a windows machine
  ☆44Updated 2 years ago