Alternatives and similar repositories for CAPs:

Users that are interested in CAPs are comparing it to the libraries listed below

• sleeptok3n / RoleCrawl
  ☆20Updated last year
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated last year
• MorDavid / DCSyncHound
  This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)
  ☆45Updated last month
• bagelByt3s / ludus_adfs
  An Ansible collection that installs an ADFS deployment with optional configurations.
  ☆30Updated 4 months ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆27Updated last year
• bouj33boy / Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
  Resources Links for the Research Based on Josh Prager and Nico Shyne's
  ☆13Updated 6 months ago
• techspence / BadShares
  A tool to create randomly insecure file shares that also contain unsecured credential files
  ☆40Updated last year
• atomicchonk / roadrecon_mcp_server
  Claude MCP server to perform analysis on ROADrecon data
  ☆36Updated last month
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆64Updated 3 months ago
• ASOT-LABS / TeamsBreaker
  ☆46Updated last year
• improsec / 2Cloudz
  ☆24Updated 3 years ago
• olafhartong / BHCEupload
  A small go tool to upload JSON files to the BloodHound community edition API
  ☆30Updated 11 months ago
• ToweringDragoon / SACL_Scanner
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆38Updated 2 months ago
• Tamirye / Find-SensitiveAzStorageAccounts
  A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …
  ☆12Updated last year
• secureworks / primary-refresh-token-viewer
  ☆11Updated 2 years ago
• vysecurity / IPFilter
  IP address filter by City
  ☆11Updated 3 months ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Updated 2 years ago
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 4 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• sse-secure-systems / Active-Directory-Spotlights
  ☆37Updated last year
• Gerenios / AADInternals-Endpoints
  AADInternals-Endpoints PowerShell module
  ☆24Updated 2 weeks ago
• ConstantinT / Lantern
  ☆20Updated 3 years ago
• hotnops / SharpGetEntraToken
  A dotnet executable to get an Entra token in an authenticated runtime
  ☆11Updated 6 months ago
• secureworks / TokenMan
  ☆100Updated 2 years ago
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆57Updated 2 months ago
• Friends-Security / sharefiltrator
  tool for enumeration & bulk download of sensitive files found in SharePoint environments
  ☆60Updated last month
• thalpius / Microsoft-Defender-for-Identity-Check-Instance
  This script gets all accepted domains in Microsoft 365 using autodiscover, gets the tenant name and checks if there is a Microsoft Defend…
  ☆24Updated 11 months ago
• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆36Updated 5 months ago
• 8com / bloodhound-adAnalysis
  Automation of Active Directory penetration testing tasks on top of BloodHound CE
  ☆34Updated last year
• Synzack / ludus_sccm
  An Ansible collection that installs an SCCM deployment with optional configurations.
  ☆78Updated last week