Alternatives and similar repositories for rcat:

Users that are interested in rcat are comparing it to the libraries listed below

• xct / winssh
  ☆58Updated last year
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆89Updated last year
• Sh4N4C1 / sh4loader
  ☆29Updated 5 months ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆79Updated 3 years ago
• synacktiv / CVE-2024-43468
  ☆81Updated last month
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆91Updated 3 years ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆87Updated 9 months ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆135Updated 6 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆106Updated 10 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆135Updated 7 months ago
• ShutdownRepo / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆68Updated 6 months ago
• rootshooter / shellcoder
  Shellcode generation and encoding utility
  ☆21Updated 2 years ago
• powerseb / PowerExtract
  ☆114Updated last year
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆83Updated 2 years ago
• Karmaz95 / evasion
  AV EVASION TECHNIQUES
  ☆77Updated 2 years ago
• csandker / pxethiefy
  ☆42Updated last month
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆45Updated 2 years ago
• szymex73 / bloodhound-convert
  Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format
  ☆55Updated 2 years ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆161Updated 8 months ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆98Updated last year
• g0h4n / RustHound-CE
  Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
  ☆157Updated 2 weeks ago
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆117Updated 4 months ago
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆230Updated last year
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆117Updated 10 months ago
• chebuya / Havoc-C2-SSRF-poc
  CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit
  ☆68Updated 5 months ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆143Updated last year
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆124Updated 11 months ago
• buyne / OSEP-1
  ☆31Updated 3 years ago