Alternatives and similar repositories for BadShares

Users that are interested in BadShares are comparing it to the libraries listed below

• MorDavid / DCSyncHound
  This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)
  ☆55Updated 6 months ago
• Phil0x4a / msuserstats
  msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…
  ☆42Updated 6 months ago
• techspence / AppLockerInspector
  Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
  ☆102Updated 3 weeks ago
• bagelByt3s / ludus_adfs
  An Ansible collection that installs an ADFS deployment with optional configurations.
  ☆42Updated 8 months ago
• bouj33boy / Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
  Resources Links for the Research Based on Josh Prager and Nico Shyne's
  ☆13Updated 10 months ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆75Updated 8 months ago
• notEricaZelic / M365AdminAccessReviewer
  Shows which M365 Objects have Privileged Access and what type (i.e. PIM, Direct, Currently Elevated)
  ☆33Updated 3 months ago
• kidtronnix / restless-guest
  An offensive toolkit for restless guests #DEFCON33
  ☆51Updated last month
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated 2 years ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆90Updated 4 months ago
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆38Updated last week
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆62Updated 7 months ago
• Synzack / ludus_sccm
  An Ansible collection that installs an SCCM deployment with optional configurations.
  ☆89Updated 2 months ago
• zh54321 / PoCEntraDeviceComplianceBypass
  Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy
  ☆157Updated 6 months ago
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆89Updated 3 months ago
• OtterHacker / OktaGinx
  ☆53Updated 3 months ago
• LaresLLC / SlinkyCat
  Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querie…
  ☆80Updated 2 years ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆27Updated 2 years ago
• NetSPI / ATEAM
  ☆108Updated last week
• spyr0-sec / AutomatedBadLab
  PowerShell scripts to create sandboxed or vulnerable environments using HyperV and AutomatedLab
  ☆86Updated last month
• absolomb / FindMeAccess
  ☆114Updated 2 months ago
• HackingLZ / saas_enum
  ☆33Updated last month
• nicolonsky / AzureAiTMFunction
  Azure AiTM Function PoC to phish Entra ID Credentials
  ☆23Updated 11 months ago
• atomicchonk / roadrecon_mcp_server
  Claude MCP server to perform analysis on ROADrecon data
  ☆45Updated 5 months ago
• dmcxblue / AzureStrike
  An HTA Application which builds Azure (Entra) Scenarios for Red Team Simulations
  ☆58Updated 3 weeks ago
• SadProcessor / BloodHoundOperator
  BloodHound PowerShell client
  ☆64Updated last month
• JCSteiner / Emperor-Public
  Payload Generation Workflow
  ☆40Updated last month
• daddycocoaman / azbelt
  AAD related enumeration in Nim
  ☆131Updated 2 years ago
• secureworks / primary-refresh-token-viewer
  ☆11Updated 2 years ago
• TheManticoreProject / DescribeNTSecurityDescriptor
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
  ☆45Updated 2 months ago