Alternatives and similar repositories for CAPs:

Users that are interested in CAPs are comparing it to the libraries listed below

• bagelByt3s / ludus_adfs
  An Ansible collection that installs an ADFS deployment with optional configurations.
  ☆27Updated 2 months ago
• sleeptok3n / RoleCrawl
  ☆20Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• bouj33boy / Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
  Resources Links for the Research Based on Josh Prager and Nico Shyne's
  ☆13Updated 4 months ago
• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆33Updated 3 months ago
• olafhartong / BHCEupload
  A small go tool to upload JSON files to the BloodHound community edition API
  ☆30Updated 8 months ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆18Updated 2 years ago
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated last year
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆25Updated last year
• infosecn1nja / Invoke-AtomicAssessment
  Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.
  ☆33Updated last month
• myexploit / living_off_the_land
  ☆43Updated 7 months ago
• Tamirye / Find-SensitiveAzStorageAccounts
  A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …
  ☆12Updated 9 months ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆56Updated 3 months ago
• techspence / BadShares
  A tool to create randomly insecure file shares that also contain unsecured credential files
  ☆31Updated 9 months ago
• 8com / bloodhound-adAnalysis
  Automation of Active Directory penetration testing tasks on top of BloodHound CE
  ☆34Updated last year
• SpecterOps / bloodhound-cli
  ☆43Updated 3 weeks ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆57Updated last month
• Leo4j / Invoke-ShareHunter
  Enumerate the Domain for Readable and Writable Shares
  ☆16Updated this week
• myexploit / Hunt
  ☆20Updated 2 months ago
• scottctaylor12 / Red-Lambda
  Leveraging AWS Lambda Function URLs for C2 Redirection
  ☆26Updated last year
• 4ndr34z / prenum
  ☆25Updated last year
• ConstantinT / Lantern
  ☆20Updated 3 years ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆93Updated 7 months ago
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆36Updated 5 months ago
• Tw1sm / pyldapsearch
  Tool for issuing manual LDAP queries which offers bofhound compatible output
  ☆18Updated last week