Alternatives and similar repositories for wcreddump

Users that are interested in wcreddump are comparing it to the libraries listed below

• TheManticoreProject / LDAPWordlistHarvester
  A tool that allows you to extract a client-specific wordlist from the LDAP of an Active Directory.
  ☆56Updated 3 months ago
• VirtualSamuraii / flyphish
  Deploy a phishing infrastructure on the fly.
  ☆75Updated 9 months ago
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆50Updated last year
• t3hbb / PanGP_Extractor
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆88Updated 9 months ago
• 4ndr34z / ntlmthief
  ☆52Updated last year
• Helixo32 / GetSystem-LCI
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆34Updated 10 months ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆91Updated 5 months ago
• myexploit / living_off_the_land
  ☆44Updated last year
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆64Updated last year
• aleemladha / SANS-Workshop-Lab
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆33Updated last week
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆56Updated last year
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆41Updated 8 months ago
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆39Updated 2 years ago
• The-Viper-One / Invoke-PassTheCert
  Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆47Updated 5 months ago
• dunderhay / entraspray
  Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)
  ☆36Updated last year
• synacktiv / CVE-2024-43468
  ☆91Updated 8 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆83Updated last year
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆40Updated 10 months ago
• 4ndr34z / prenum
  ☆28Updated 2 years ago
• ShutdownRepo / dcshadow
  Python alternative to Mimikatz lsadump::dcshadow
  ☆153Updated 3 months ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆94Updated last year
• OtterHacker / ShareFouine
  ☆51Updated 11 months ago
• ASP4RUX / bypassEDR-AV
  ☆59Updated 10 months ago
• AetherBlack / abuseACL
  A python script to automatically list vulnerable Windows ACEs/ACLs.
  ☆61Updated 3 months ago
• HackingLZ / saas_enum
  ☆33Updated 2 months ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆59Updated 2 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆177Updated 4 months ago
• Thunter-HackTeam / EvilentCoerce
  ☆147Updated 4 months ago
• synacktiv / IPSpinner
  IPSpinner works as a local proxy that redirects requests through external services.
  ☆79Updated 6 months ago