Alternatives and similar repositories for ADNinja:

Users that are interested in ADNinja are comparing it to the libraries listed below

• Hagrid29 / DumpAADSyncCreds
  C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…
  ☆36Updated last year
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆37Updated 2 years ago
• KINGSABRI / AssemblyLoader
  Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()
  ☆34Updated 3 years ago
• Synzack / Excel-4.0-Shellcode-Generator
  ☆12Updated 4 years ago
• EspressoCake / HandleKatz_BOF
  A BOF port of the research of @thefLinkk and @codewhitesec
  ☆95Updated 3 years ago
• Gr1mmie / SharpShellCodeObfus
  Caeser Cipher your shellcode!
  ☆20Updated 2 years ago
• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆83Updated last year
• S3cur3Th1sSh1t / LDAP-Signing-Scanner
  A little scanner to check the LDAP Signing state
  ☆46Updated 3 years ago
• Wh04m1001 / PICDumper
  ☆24Updated 2 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆78Updated 2 years ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• HuskyHacks / CobaltNotion
  A spin-off research project. Cobalt Strike x Notion collab 2022
  ☆53Updated 2 years ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• Octoberfest7 / CS_Uploads_Tracker
  Aggressor script add-in for CobaltStrike to track file uploads
  ☆36Updated 2 years ago
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆37Updated 4 years ago
• LuxNoBulIshit / Smug_Fu3k
  ☆51Updated 2 years ago
• sliverarmory / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆50Updated 3 years ago
• improsec / CaddyStager
  ☆35Updated 2 years ago
• brett-fitz / pyMalleableProfileParser
  Parses Cobalt Strike malleable C2 profiles.
  ☆48Updated 2 weeks ago
• BOFs / BOFs
  Beacon Object Files.
  ☆31Updated 10 months ago
• simondotsh / DirSync
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆27Updated last year
• exploitblizzard / Syscall-Example
  Using syscall to load shellcode, Evasion techniques
  ☆26Updated 3 years ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆52Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆35Updated 5 months ago
• EncodeGroup / RegSave
  A .NET implementation to dump SAM / SECURITY / SYSTEM registry hives
  ☆50Updated 4 years ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆31Updated 2 years ago
• jsecu / ElevatedEvents
  ☆29Updated 2 years ago