sud0Ru/NauthNRPC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sud0Ru/NauthNRPC)

sud0Ru / NauthNRPC

Enumerate Domain Users Without Authentication

☆282

Alternatives and similar repositories for NauthNRPC

Users that are interested in NauthNRPC are comparing it to the libraries listed below

Sorting:

decoder-it / KrbRelay-SMBServer
View on GitHub
☆235Oct 8, 2024Updated last year
Octoberfest7 / Enumprotections_BOF
View on GitHub
A BOF to enumerate system process, their protection levels, and more.
☆125Nov 27, 2024Updated last year
CICADA8-Research / RemoteKrbRelay
View on GitHub
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
☆637May 8, 2025Updated 9 months ago
xforcered / RemoteMonologue
View on GitHub
Weaponizing DCOM for NTLM Authentication Coercions
☆275Jul 1, 2025Updated 8 months ago
safedv / RustSoliloquy
View on GitHub
A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
☆191Apr 26, 2025Updated 10 months ago
logangoins / Stifle
View on GitHub
.NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
☆150Feb 10, 2025Updated last year
3lp4tr0n / RemoteMonologue
View on GitHub
Weaponizing DCOM for NTLM Authentication Coercions
☆197Nov 4, 2025Updated 3 months ago
cogiceo / GPOHound
View on GitHub
Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data
☆358Jan 8, 2026Updated last month
trustedsec / DitExplorer
View on GitHub
Tool for viewing NTDS.dit
☆194Mar 14, 2025Updated 11 months ago
CCob / DRSAT
View on GitHub
Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
☆275Dec 27, 2024Updated last year
scrt / PowerChell
View on GitHub
A PowerShell console in C/C++ with all the security features disabled
☆364Oct 14, 2025Updated 4 months ago
AlmondOffSec / DCOMRunAs
View on GitHub
Lateral movement with DCOM DLL hijacking
☆177Jul 4, 2025Updated 7 months ago
decoder-it / KrbRelayEx
View on GitHub
☆381Oct 17, 2025Updated 4 months ago
rtecCyberSec / RAITrigger
View on GitHub
Local SYSTEM auth trigger for relaying
☆169Jul 22, 2025Updated 7 months ago
login-securite / conpass
View on GitHub
Continuous password spraying tool
☆201Dec 4, 2025Updated 2 months ago
coffeegist / bofhound
View on GitHub
Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
☆362Jan 29, 2026Updated last month
synacktiv / gpoParser
View on GitHub
gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…
☆334Jan 14, 2026Updated last month
ZERODETECTION / MSC_Dropper
View on GitHub
☆250Jul 31, 2024Updated last year
NtDallas / OdinLdr
View on GitHub
Cobaltstrike Reflective Loader with Synthetic Stackframe
☆186Jan 17, 2026Updated last month
Offensive-Panda / LsassReflectDumping
View on GitHub
This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
☆215Oct 19, 2024Updated last year
NocteDefensor / SCCMDecryptor-BOF
View on GitHub
☆51Jun 28, 2025Updated 8 months ago
kozmer / aad-bofs
View on GitHub
☆138Nov 17, 2025Updated 3 months ago
synacktiv / GroupPolicyBackdoor
View on GitHub
Group Policy Objects manipulation and exploitation framework
☆292Dec 7, 2025Updated 2 months ago
LuemmelSec / APEX
View on GitHub
Azure Post Exploitation Framework
☆244Oct 27, 2025Updated 4 months ago
OleFredrik1 / remoteKrbRelayx
View on GitHub
A tool for coercing and relaying Kerberos authentication over DCOM and RPC.
☆147Jul 17, 2025Updated 7 months ago
deepinstinct / DCOMUploadExec
View on GitHub
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
☆381Dec 13, 2024Updated last year
0xsp-SRD / MDE_Enum
View on GitHub
comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
☆211Jun 10, 2024Updated last year
sudonoodle / BOF-entra-authcode-flow
View on GitHub
Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
☆124Jan 17, 2026Updated last month
decoder-it / ChgPass
View on GitHub
☆137Feb 11, 2025Updated last year
Nomad0x7 / sekken-enum
View on GitHub
adws enumeration bof
☆167Feb 16, 2026Updated 2 weeks ago
Thunter-HackTeam / EvilentCoerce
View on GitHub
☆159May 5, 2025Updated 9 months ago
synacktiv / GPOddity
View on GitHub
The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
☆361Dec 13, 2025Updated 2 months ago
rvrsh3ll / Bolthole
View on GitHub
Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.
☆274May 2, 2025Updated 10 months ago
EricEsquivel / Inline-EA
View on GitHub
Cobalt Strike BOF for evasive .NET assembly execution
☆308Mar 31, 2025Updated 11 months ago
Darkrain2009 / RedExt
View on GitHub
Chrome browser extension-based Command & Control
☆239Jul 2, 2025Updated 8 months ago
zyn3rgy / smbtakeover
View on GitHub
BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
☆346Nov 19, 2024Updated last year
grayhatkiller / SharpExShell
View on GitHub
SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
☆75May 1, 2024Updated last year
xforcered / ForsHops
View on GitHub
ForsHops
☆152Mar 25, 2025Updated 11 months ago
garrettfoster13 / sccmhunter
View on GitHub
SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
☆892Feb 18, 2026Updated last week