Alternatives and similar repositories for BadShares

Users that are interested in BadShares are comparing it to the libraries listed below

• MorDavid / DCSyncHound
  This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)
  ☆66Updated 8 months ago
• Phil0x4a / msuserstats
  msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…
  ☆42Updated 8 months ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆78Updated 11 months ago
• kidtronnix / restless-guest
  An offensive toolkit for restless guests #DEFCON33
  ☆54Updated 3 months ago
• notEricaZelic / M365AdminAccessReviewer
  Shows which M365 Objects have Privileged Access and what type (i.e. PIM, Direct, Currently Elevated)
  ☆36Updated 6 months ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆26Updated 2 years ago
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated 2 years ago
• bouj33boy / Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
  Resources Links for the Research Based on Josh Prager and Nico Shyne's
  ☆13Updated last year
• bagelByt3s / ludus_adfs
  An Ansible collection that installs an ADFS deployment with optional configurations.
  ☆42Updated 11 months ago
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆39Updated 3 months ago
• nicolonsky / AzureAiTMFunction
  Azure AiTM Function PoC to phish Entra ID Credentials
  ☆25Updated 2 weeks ago
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆98Updated 6 months ago
• zh54321 / PoCEntraDeviceComplianceBypass
  Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy
  ☆163Updated 3 weeks ago
• LuemmelSec / PMP-Decrypter
  ☆41Updated 2 years ago
• Synzack / ludus_sccm
  An Ansible collection that installs an SCCM deployment with optional configurations.
  ☆95Updated 5 months ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆90Updated 7 months ago
• techspence / AppLockerInspector
  Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
  ☆127Updated 3 months ago
• LaresLLC / SlinkyCat
  Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querie…
  ☆79Updated 2 years ago
• ASOT-LABS / TeamsBreaker
  ☆46Updated last year
• TheManticoreProject / DescribeNTSecurityDescriptor
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
  ☆47Updated 2 months ago
• spyr0-sec / AutomatedBadLab
  PowerShell scripts to create sandboxed or vulnerable environments using HyperV and AutomatedLab
  ☆90Updated 4 months ago
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆65Updated 9 months ago
• sse-secure-systems / Active-Directory-Spotlights
  ☆36Updated 2 years ago
• unkn0wn-r1d3r / EvilBurp
  Automated Evilginx phishlet creator Extension for Burpsuite
  ☆59Updated 10 months ago
• infosecn1nja / Invoke-AtomicAssessment
  Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.
  ☆43Updated 10 months ago
• NotSoSecure / NoPrompt
  ☆93Updated 4 months ago
• MHaggis / MSIXBuilder
  MSIX Building Made Easy for Defenders
  ☆59Updated 3 months ago
• SadProcessor / BloodHoundOperator
  BloodHound PowerShell client
  ☆74Updated 2 months ago
• FuzzySecurity / SANS-HackFest-2023
  ☆47Updated 2 years ago
• NetSPI / ATEAM
  ☆120Updated 2 months ago