Alternatives and similar repositories for Invoke-SPSI

Users that are interested in Invoke-SPSI are comparing it to the libraries listed below

• zh54321 / SnafflerParser
  Parses Snaffler output file and generate beautified outputs.
  ☆112Updated 10 months ago
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆163Updated 7 months ago
• CompassSecurity / bloodhoundce-resources
  ☆85Updated last week
• decoder-it / KrbRelay-SMBServer
  ☆230Updated last year
• mallo-m / Cpp-ExecAssembly
  C++ Reflective Assembly Loader
  ☆29Updated 9 months ago
• gatariee / minrm
  a minimalistic winrm client written in python
  ☆25Updated 7 months ago
• Sh4N4C1 / sh4loader
  ☆29Updated last year
• chryzsh / awesome-bof
  🧠 The ultimate, community-curated resource for Beacon Object Files (BOFs) — tutorials, how-tos, deep dives, and reference materials.
  ☆92Updated 3 weeks ago
• nromsdahl / squarephish2
  OAuth Device Code Phishing Toolkit
  ☆95Updated 3 months ago
• P0142 / LDAP-Bof-Collection
  Collection of many ldap bofs for domain enumeration and privilege escalation. Created for use with the Adaptix C2.
  ☆29Updated this week
• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆179Updated last month
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Updated 5 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆211Updated 5 months ago
• thelikes / slivercloak
  PoC framework for Sliver compilation
  ☆23Updated 11 months ago
• b5null / Invoke-BadSuccessor.ps1
  PowerShell Script to automatically abuse the BadSuccessor vulnerability (CVE-2025-53779)
  ☆33Updated 3 weeks ago
• andrecrafts / Bloodhound-query-legacy2ce
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆34Updated 2 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆171Updated last month
• p4p1 / havoc-privkit
  a port of privkit bof for havoc
  ☆24Updated 2 years ago
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆364Updated 2 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆242Updated last month
• rtecCyberSec / RAITrigger
  Local SYSTEM auth trigger for relaying
  ☆167Updated 4 months ago
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆114Updated 5 months ago
• GeisericII / Winpacket
  Impacket pre-compiled binaries
  ☆17Updated 2 years ago
• atomicchonk / ctrlaltrange
  AI-based Ludus range configuration builder
  ☆29Updated 7 months ago
• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆178Updated 11 months ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆251Updated 3 weeks ago
• ZERODETECTION / MSC_Dropper
  ☆229Updated last year
• Fudgedotdotdot / dump_kerberos_tickets
  Dump Kerberos tickets
  ☆43Updated 4 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆154Updated last month
• ibaiC / BadSuccessor
  A PoC for the dMSA Active Directory Domain Takeover deemed BadSuccessor
  ☆44Updated 4 months ago