Alternatives and similar repositories for BadShares

Users that are interested in BadShares are comparing it to the libraries listed below

• MorDavid / DCSyncHound
  This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)
  ☆66Updated 10 months ago
• Phil0x4a / msuserstats
  msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…
  ☆43Updated 10 months ago
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated 2 years ago
• nicolonsky / AzureAiTMFunction
  Azure AiTM Function PoC to phish Entra ID Credentials
  ☆26Updated 2 months ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆26Updated 2 years ago
• notEricaZelic / M365AdminAccessReviewer
  Shows which M365 Objects have Privileged Access and what type (i.e. PIM, Direct, Currently Elevated)
  ☆37Updated 8 months ago
• kidtronnix / restless-guest
  An offensive toolkit for restless guests #DEFCON33
  ☆54Updated 5 months ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆82Updated last year
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆92Updated last month
• zh54321 / PoCEntraDeviceComplianceBypass
  Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy
  ☆166Updated 2 months ago
• bagelByt3s / ludus_adfs
  An Ansible collection that installs an ADFS deployment with optional configurations.
  ☆43Updated last month
• Synzack / ludus_sccm
  An Ansible collection that installs an SCCM deployment with optional configurations.
  ☆99Updated last month
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆105Updated 7 months ago
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆41Updated 4 months ago
• ASOT-LABS / TeamsBreaker
  ☆47Updated last year
• MHaggis / NEBULA
  Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques
  ☆72Updated 3 weeks ago
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆65Updated 11 months ago
• spyr0-sec / AutomatedBadLab
  PowerShell scripts to create sandboxed or vulnerable environments using HyperV and AutomatedLab
  ☆92Updated 5 months ago
• TheManticoreProject / DescribeNTSecurityDescriptor
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
  ☆47Updated 3 months ago
• Trimarc / Locksmith
  A tiny tool to identify and remediate common misconfigurations in Active Directory Certificate Services
  ☆27Updated 7 months ago
• SadProcessor / BloodHoundOperator
  BloodHound PowerShell client
  ☆75Updated last month
• bouj33boy / Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
  Resources Links for the Research Based on Josh Prager and Nico Shyne's
  ☆13Updated last year
• techspence / AppLockerInspector
  Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
  ☆131Updated 5 months ago
• sleeptok3n / RoleCrawl
  ☆21Updated 3 months ago
• NotSoSecure / NoPrompt
  ☆99Updated 5 months ago
• techspence / Locksmith
  A tool to identify and remediate common misconfigurations in Active Directory Certificate Services
  ☆16Updated 2 years ago
• secureworks / BAADTokenBroker
  ☆115Updated 7 months ago
• FuzzySecurity / SANS-HackFest-2023
  ☆47Updated 2 years ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆95Updated last year
• OtterHacker / OktaGinx
  ☆57Updated 7 months ago