Alternatives and similar repositories for KeyTabExtract

Users that are interested in KeyTabExtract are comparing it to the libraries listed below

• 0xjpuff / reverse_shell_splunk
  A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.
  ☆86Updated 6 years ago
• micahvandeusen / gMSADumper
  Lists who can read any gMSA password blobs and parses them if the current user has access.
  ☆275Updated last year
• ShutdownRepo / targetedKerberoast
  Kerberoast with ACL abuse capabilities
  ☆453Updated 4 months ago
• giuliano108 / SeBackupPrivilege
  Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to
  ☆358Updated 11 years ago
• dirkjanm / PKINITtools
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆743Updated 4 months ago
• zer1t0 / certi
  ADCS abuser
  ☆280Updated 2 years ago
• AlmondOffSec / PassTheCert
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆623Updated 10 months ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆267Updated 2 years ago
• ivanitlearning / Juicy-Potato-x86
  Juicy Potato for x86 Windows
  ☆120Updated 5 years ago
• Hackndo / sprayhound
  Password spraying tool and Bloodhound integration
  ☆232Updated 4 months ago
• dpgg101 / GitLabUserEnum
  GitLab User Enumeration
  ☆29Updated 4 months ago
• rvazarkar / GMSAPasswordReader
  ☆219Updated 2 years ago
• byronkg / SharpGPOAbuse
  Precompiled executable
  ☆53Updated 2 months ago
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆319Updated 2 years ago
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆106Updated 5 years ago
• X0RW3LL / XenSpawn
  Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)
  ☆139Updated 10 months ago
• Hackndo / pyGPOAbuse
  Partial python implementation of SharpGPOAbuse
  ☆421Updated last year
• tothi / rbcd-attack
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆537Updated 2 years ago
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆252Updated 2 weeks ago
• fashionproof / EnableAllTokenPrivs
  ☆79Updated 5 years ago
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆421Updated 4 months ago
• ly4k / BloodHound
  Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements
  ☆154Updated 2 years ago
• yaap7 / ldapsearch-ad
  Python3 script to quickly get various information from a domain controller through his LDAP service.
  ☆223Updated 5 months ago
• wavestone-cdt / powerpxe
  Powershell script to extract information from boot PXE
  ☆139Updated 6 years ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆275Updated 3 years ago
• CsEnox / SeManageVolumeExploit
  ☆113Updated last year
• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆174Updated 4 years ago
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆241Updated last month
• IppSec / forward-shell
  ☆160Updated 3 years ago
• juliourena / plaintext
  ☆141Updated 11 months ago