Alternatives and similar repositories for KeyTabExtract

Users that are interested in KeyTabExtract are comparing it to the libraries listed below

• micahvandeusen / gMSADumper
  Lists who can read any gMSA password blobs and parses them if the current user has access.
  ☆286Updated last year
• ShutdownRepo / targetedKerberoast
  Kerberoast with ACL abuse capabilities
  ☆474Updated 5 months ago
• 0xjpuff / reverse_shell_splunk
  A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.
  ☆91Updated 6 years ago
• giuliano108 / SeBackupPrivilege
  Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to
  ☆362Updated 11 years ago
• AlmondOffSec / PassTheCert
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆631Updated 3 weeks ago
• dirkjanm / PKINITtools
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆765Updated 5 months ago
• Hackndo / pyGPOAbuse
  Partial python implementation of SharpGPOAbuse
  ☆429Updated last week
• byronkg / SharpGPOAbuse
  Precompiled executable
  ☆55Updated 3 months ago
• ivanitlearning / Juicy-Potato-x86
  Juicy Potato for x86 Windows
  ☆120Updated 5 years ago
• Hackndo / sprayhound
  Password spraying tool and Bloodhound integration
  ☆234Updated 5 months ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆267Updated 2 years ago
• wavestone-cdt / powerpxe
  Powershell script to extract information from boot PXE
  ☆141Updated 6 years ago
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆108Updated 5 years ago
• zer1t0 / certi
  ADCS abuser
  ☆288Updated 2 years ago
• whotwagner / logrotten
  ☆162Updated last month
• CsEnox / SeManageVolumeExploit
  ☆117Updated 2 years ago
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆422Updated 5 months ago
• X0RW3LL / XenSpawn
  Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)
  ☆138Updated 11 months ago
• rvazarkar / GMSAPasswordReader
  ☆220Updated 2 years ago
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆253Updated last month
• dpgg101 / GitLabUserEnum
  GitLab User Enumeration
  ☆30Updated 5 months ago
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆323Updated 2 years ago
• yaap7 / ldapsearch-ad
  Python3 script to quickly get various information from a domain controller through his LDAP service.
  ☆226Updated 5 months ago
• IppSec / forward-shell
  ☆160Updated 3 years ago
• pentestmonkey / smtp-user-enum
  Username guessing tool primarily for use against the default Solaris SMTP service. Can use either EXPN, VRFY or RCPT TO.
  ☆122Updated 3 years ago
• ly4k / BloodHound
  Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements
  ☆154Updated 2 years ago
• PShlyundin / ldap_shell
  AD ACL abuse
  ☆322Updated 2 months ago
• tothi / rbcd-attack
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆542Updated 2 years ago
• ropnop / go-windapsearch
  Utility to enumerate users, groups and computers from a Windows domain through LDAP queries
  ☆382Updated 4 years ago
• xct / hashgrab
  generate payloads that force authentication against an attacker machine
  ☆106Updated 2 years ago