Alternatives and similar repositories for DefCon33

Users that are interested in DefCon33 are comparing it to the libraries listed below

• aleemladha / SANS-Workshop-Lab
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆33Updated 2 weeks ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆58Updated last year
• nullenc0de / Internal_Pentest
  Scripts that automate portions of pentests.
  ☆52Updated 2 months ago
• websecnl / MagicByteSelector
  Burp Suite Extension for inserting a magic byte into responder's request
  ☆25Updated 2 years ago
• Lucreza / WinDefExclusionFinder
  Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
  ☆25Updated 10 months ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆51Updated last year
• Michaeladsl / Patronusx
  ☆54Updated 8 months ago
• n00py / DockerKnocker
  Exploits Unauth Docker API
  ☆41Updated 5 months ago
• 8com / bloodhound-adAnalysis
  Automation of Active Directory penetration testing tasks on top of BloodHound CE
  ☆35Updated 2 years ago
• anrbn / GATOR
  GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments
  ☆90Updated last year
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆39Updated 2 years ago
• k3nundrum / redteamtips
  ☆16Updated last year
• VKo9 / AD-attacks-automation-scripts
  This repository contains scripts about ACL abuse and any other active directory attacking methods.
  ☆36Updated 2 years ago
• anrbn / GCP-Attack-Defense
  A Project dedicated to documenting various attack and detection vectors that can be encountered within Google Cloud Platform (GCP).
  ☆61Updated last year
• Antonlovesdnb / DockerDetectionNotes
  Some of my rough notes for Docker threat detection
  ☆47Updated 2 years ago
• nollium / CVE-2024-50340-eos-exploit
  Exploit for Symfony CVE-2024-50340 (forked eos)
  ☆29Updated 10 months ago
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆42Updated last year
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆48Updated 3 months ago
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• spyx / ParamAngler
  ☆27Updated 2 years ago
• gwyomarch / WebSecurityAcademy
  ☆15Updated 11 months ago
• carlospolop / aws-Perms2ManagedPolicies
  ☆13Updated last year
• VirtualSamuraii / flyphish
  Deploy a phishing infrastructure on the fly.
  ☆75Updated 9 months ago
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆23Updated last year
• redrays-io / SAP-Threat-Modeling
  The SAP Threat Modeling Tool is an on-premises open-source web application designed to analyze and visualize connections between SAP syst…
  ☆50Updated 7 months ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆40Updated 3 months ago
• kleiton0x00 / contexter
  Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3
  ☆22Updated last year
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆50Updated last year
• kartikdurg / Terrible-Thick-Client
  "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.
  ☆20Updated 2 years ago
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆67Updated last year