Alternatives and similar repositories for CerealKiller

Users that are interested in CerealKiller are comparing it to the libraries listed below

• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 3 years ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆118Updated last year
• MinoTauro2020 / RedTeam-CRTL-Certification
  ☆18Updated 10 months ago
• Shrfnt77 / SharpCoercer
  SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…
  ☆49Updated 4 months ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆51Updated 6 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆54Updated 9 months ago
• nettitude / raccoon
  ☆53Updated 9 months ago
• mertdas / SharpLateral
  Lateral Movement
  ☆124Updated 2 years ago
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆60Updated 4 months ago
• dadevel / impacket-shell-integration
  Bash and ZSH integration for Impacket
  ☆73Updated last week
• leftp / DPAPISnoop
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆139Updated last year
• LaresLLC / SuperSharpShares
  SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…
  ☆75Updated last year
• Leo4j / SessionExec
  Execute commands in other Sessions
  ☆90Updated last year
• 7hePr0fess0r / ADCSDevilCOM
  A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …
  ☆136Updated last week
• dru1d-foofus / GetLAPSPassword
  A LAPS dumper written using the impacket library.
  ☆32Updated 2 years ago
• OtterHacker / AWSRedirector
  ☆57Updated 8 months ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆107Updated 2 years ago
• raskolnikov90 / LainAmsiOpenSession
  Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dll
  ☆45Updated 5 months ago
• Krypteria / Neo4LDAP
  Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…
  ☆88Updated this week
• Hagrid29 / CertifyKit
  Active Directory certificate abuse
  ☆39Updated 3 years ago
• cogiceo / DACLSearch
  Exhaustive search and flexible filtering of Active Directory ACEs.
  ☆59Updated this week
• blackarrowsec / Handly
  Abuse leaked token handles.
  ☆133Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated last month
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆76Updated 2 years ago
• CompassSecurity / mssqlrelay
  Tool for MSSQL relay audit and abuse
  ☆55Updated 10 months ago
• nettitude / TokenCert
  TokenCert
  ☆101Updated last year
• bitsadmin / dir2json
  Tool for efficient directory enumeration
  ☆65Updated last year
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆34Updated 2 years ago
• Paradoxis / ADSyncDump-BOF
  The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…
  ☆162Updated 2 months ago
• xpn / CloudInject
  ☆115Updated 11 months ago