Alternatives and similar repositories for aardwolf

Users that are interested in aardwolf are comparing it to the libraries listed below

• nettitude / Aladdin
  ☆223Updated 2 years ago
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆131Updated 3 years ago
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆260Updated 2 years ago
• MzHmO / TGSThief
  My implementation of the GIUDA project in C++
  ☆188Updated 2 years ago
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆125Updated 2 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆147Updated 2 years ago
• p0dalirius / MSSQL-Analysis-Coerce
  A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.
  ☆132Updated 2 years ago
• nccgroup / DroppedConnection
  ☆129Updated 2 years ago
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆93Updated 3 years ago
• fortalice / modifyCertTemplate
  ADCS cert template modification and ACL enumeration
  ☆143Updated 2 years ago
• cube0x0 / LdapSignCheck
  Beacon Object File & C# project to check LDAP signing
  ☆196Updated last year
• moloch-- / sliver-py
  A Python gRPC Client Library for Sliver
  ☆78Updated 7 months ago
• gabriel-sztejnworcel / pipe-intercept
  Intercept Windows Named Pipes communication using Burp or similar HTTP proxy tools
  ☆276Updated 2 months ago
• sliverarmory / armory
  The Official Sliver Armory
  ☆121Updated 7 months ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆292Updated 2 years ago
• akamai / DDSpoof
  DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.
  ☆131Updated last year
• mdsecactivebreach / DragonCastle
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆301Updated 3 years ago
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆298Updated 2 years ago
• cube0x0 / YubiKey-Relay
  ☆68Updated 3 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆176Updated 2 years ago
• ly4k / PassTheChallenge
  Recovering NTLM hashes from Credential Guard
  ☆351Updated 2 years ago
• yanncam / ShuckNT
  ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication …
  ☆75Updated last year
• synacktiv / bbs
  bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or ch…
  ☆93Updated 5 months ago
• m8sec / CVE-2021-34527
  PrintNightmare (CVE-2021-34527) PoC Exploit
  ☆118Updated 2 years ago
• MythicAgents / Athena
  ☆212Updated last month
• lexfo / rpc2socks
  Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.
  ☆193Updated 4 years ago
• mandiant / ccmpwn
  ☆214Updated last year
• skelsec / adiskreader
  Async Python library to parse local and remote disk images.
  ☆81Updated 4 months ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆150Updated 2 years ago
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆111Updated 3 years ago