Alternatives and similar repositories for aardwolf:

Users that are interested in aardwolf are comparing it to the libraries listed below

• skelsec / aardwolfgui
  Asynchronous RDP/VNC client for Python (GUI)
  ☆71Updated 4 months ago
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆256Updated last year
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆236Updated last year
• last-byte / RIPPL
  RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows
  ☆7Updated 3 years ago
• nettitude / Aladdin
  ☆220Updated last year
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆273Updated 3 years ago
• Dec0ne / DavRelayUp
  DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
  ☆544Updated last year
• skelsec / aiosmb
  Fully asynchronous SMB library written in pure python
  ☆203Updated last month
• ly4k / PassTheChallenge
  Recovering NTLM hashes from Credential Guard
  ☆336Updated 2 years ago
• fortalice / modifyCertTemplate
  ADCS cert template modification and ACL enumeration
  ☆136Updated last year
• MzHmO / TGSThief
  My implementation of the GIUDA project in C++
  ☆183Updated last year
• lexfo / rpc2socks
  Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.
  ☆185Updated 4 years ago
• garrettfoster13 / aced
  ☆159Updated 6 months ago
• OmriBaso / RToolZ
  A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls.
  ☆320Updated 2 years ago
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆117Updated last year
• wavvs / nanorobeus
  COFF file (BOF) for managing Kerberos tickets.
  ☆295Updated last year
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆276Updated 2 years ago
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆111Updated last year
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆101Updated 2 years ago
• MzHmO / NtlmThief
  Extracting NetNTLM without touching lsass.exe
  ☆235Updated last year
• mandiant / ccmpwn
  ☆202Updated last year
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆237Updated last year
• cube0x0 / SharpSystemTriggers
  Collection of remote authentication triggers in C#
  ☆484Updated 11 months ago
• nickvourd / COM-Hunter
  COM Hijacking VOODOO
  ☆292Updated last month
• dirkjanm / forest-trust-tools
  Proof-of-concept tools for my AD Forest trust research
  ☆209Updated 10 months ago
• florylsk / SignatureGate
  Weaponized HellsGate/SigFlip
  ☆199Updated last year
• MythicAgents / Athena
  ☆198Updated last week
• rasta-mouse / DInvoke
  Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.
  ☆159Updated last year
• mdsecactivebreach / DragonCastle
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆298Updated 2 years ago
• moloch-- / sliver-py
  A Python gRPC Client Library for Sliver
  ☆68Updated 3 weeks ago