Alternatives and similar repositories for ADNinja

Users that are interested in ADNinja are comparing it to the libraries listed below

• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆39Updated 4 years ago
• Synzack / Excel-4.0-Shellcode-Generator
  ☆13Updated 5 years ago
• Wh04m1001 / ZoneAlarmEoP
  Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV
  ☆26Updated 2 years ago
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆26Updated 2 years ago
• Kryp7os / SharpRBCD
  An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD
  ☆47Updated 4 months ago
• Hagrid29 / DumpAADSyncCreds
  C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…
  ☆41Updated 2 years ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 3 years ago
• KINGSABRI / AssemblyLoader
  Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()
  ☆34Updated 4 years ago
• jsecu / ElevatedEvents
  ☆30Updated 2 years ago
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆38Updated 3 years ago
• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆56Updated 2 years ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆54Updated 2 years ago
• CodeXTF2 / evasion-adventures-files
  Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"
  ☆28Updated 2 years ago
• BOFs / BOFs
  Beacon Object Files.
  ☆35Updated last year
• ly4k / Pypykatz
  Modified version of Pypykatz to print encrypted credentials
  ☆52Updated 2 years ago
• mobdk / Core
  Core bypass Windows Defender and execute any binary converted to shellcode
  ☆43Updated 3 years ago
• Wh04m1001 / PICDumper
  ☆25Updated 3 years ago
• dobin / antniumui
  The Web UI for Antnium
  ☆27Updated 3 years ago
• LuxNoBulIshit / Smug_Fu3k
  ☆53Updated 3 years ago
• watchtowrlabs / watchTowr-vs-FortiWeb-CVE-2025-25257
  ☆30Updated last week
• dosxuz / ProcessGhosting
  Small POC for process ghosting
  ☆39Updated 3 years ago
• S3cur3Th1sSh1t / LDAP-Signing-Scanner
  A little scanner to check the LDAP Signing state
  ☆46Updated 3 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆85Updated 2 years ago
• gokupwn / shootCutMe
  ShootCutMe an .LNK file creator tool for redteamer
  ☆13Updated 9 months ago
• vincd / savoir
  Savoir is a tool to perform tasks during internal security assessment
  ☆19Updated 3 years ago
• Wh04m1001 / CVE-2022-3368
  ☆29Updated 2 years ago
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆39Updated last year
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• y00ga-sec / Forensike
  Remotely dump NT hashes through Windows Crash dumps
  ☆27Updated 8 months ago