Alternatives and similar repositories for SOAPHound

Users that are interested in SOAPHound are comparing it to the libraries listed below

• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆43Updated 8 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆35Updated 2 months ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆45Updated last year
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• OtterHacker / Cerbere
  ☆48Updated 2 years ago
• xpn / adfstoolkit
  ☆36Updated 6 months ago
• myexploit / living_off_the_land
  ☆44Updated last year
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆43Updated 4 months ago
• 0xB455 / ActiveSyncBruter
  ☆26Updated 4 months ago
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆50Updated 6 months ago
• OtterHacker / ShareFouine
  ☆50Updated 8 months ago
• kozmer / rspy
  rust port of pspy with support for process monitoring over dbus
  ☆34Updated 3 weeks ago
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆32Updated 9 months ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆40Updated last year
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• patrickt2017 / VEHNetLoader
  Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies
  ☆33Updated last week
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆45Updated 3 months ago
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆55Updated 2 years ago
• kapellos / VladimiRED
  ☆18Updated 6 months ago
• dmcxblue / NiceDayPhishing
  ☆19Updated 7 months ago
• nickvourd / Rocabella
  Sniffing files generator
  ☆59Updated 4 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆58Updated 2 weeks ago
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• redr0nin / badgerDAPS
  Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…
  ☆38Updated last year
• 4ndr34z / prenum
  ☆28Updated 2 years ago
• slygoo / pssrecon
  ☆24Updated 9 months ago
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆37Updated 7 months ago
• Offensive-Panda / .NET_PROFILER_DLL_LOADING
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆43Updated 11 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated last year
• duckbillsecurity / pdf-smuggler
  Create PDFs with HTML smuggling attachments that save on opening the document.
  ☆30Updated 2 weeks ago