whokilleddb / SOAPHoundView external linksLinks
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
☆33May 30, 2024Updated last year
Alternatives and similar repositories for SOAPHound
Users that are interested in SOAPHound are comparing it to the libraries listed below
Sorting:
- This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)☆51May 8, 2024Updated last year
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Apr 15, 2024Updated last year
- A simple to use single-include Windows API resolver☆23Jul 9, 2024Updated last year
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆186Mar 4, 2024Updated last year
- TokenCert☆102Nov 15, 2024Updated last year
- NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.☆30Jan 21, 2024Updated 2 years ago
- This tool can gather a lot of info without any defender alerts. It is useful for Penetration testers, SOC Analysts, System administrators…☆29Apr 9, 2025Updated 10 months ago
- Installing wazuh SIEM Unified XDR and SIEM protection☆31Jun 3, 2025Updated 8 months ago
- 7 days of Red Teaming TTPs that your favorite tools may use to acheive a post exploitation goal☆18Apr 17, 2021Updated 4 years ago
- Cobalt Strike BOFS☆16Dec 20, 2023Updated 2 years ago
- ☆19Nov 28, 2024Updated last year
- A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.☆171May 13, 2024Updated last year
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆212Jun 10, 2024Updated last year
- Rewrite to fit my needs☆32Jul 20, 2024Updated last year
- Find Inbound Email Domains☆35Dec 21, 2023Updated 2 years ago
- ☆159May 5, 2025Updated 9 months ago
- C2 Infrastructure Automation☆118Jun 21, 2025Updated 7 months ago
- Impacket is a collection of Python classes for working with network protocols.☆19Nov 13, 2025Updated 3 months ago
- This GitHub repository contains benign specimens; however, the techniques demonstrated herein could potentially be exploited for maliciou…☆17Aug 4, 2024Updated last year
- Leak NTLM via Website tab in teams via MS Office☆78Mar 28, 2024Updated last year
- ☆44Feb 6, 2025Updated last year
- Tool to discover Resource-Based Constrained Delegation attack paths in Active Directory environments☆126Aug 10, 2021Updated 4 years ago
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).☆585Mar 19, 2024Updated last year
- Attempt at Obfuscated version of SharpCollection☆242Nov 15, 2025Updated 2 months ago
- Find kernel32 base and API addresses. Simple C++ implementation☆24Apr 7, 2022Updated 3 years ago
- Various AD tools needed for penetration testing in one place.☆24Jul 13, 2023Updated 2 years ago
- Local SYSTEM auth trigger for relaying - X☆155Jul 23, 2025Updated 6 months ago
- ☆104Nov 14, 2025Updated 2 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated 7 months ago
- Threadless shellcode injection tool☆68Aug 5, 2024Updated last year
- An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD☆49Mar 10, 2025Updated 11 months ago
- in-process powershell runner for BRC4☆48Oct 31, 2023Updated 2 years ago
- ☆27May 1, 2023Updated 2 years ago
- Automatically deploy Nemesis☆21Jun 14, 2024Updated last year
- ☆24Feb 1, 2025Updated last year
- Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.☆271Apr 17, 2023Updated 2 years ago
- Native Syscalls Shellcode Injector☆267Jul 2, 2023Updated 2 years ago
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆540Nov 23, 2025Updated 2 months ago
- ☆44Oct 16, 2023Updated 2 years ago