Alternatives and similar repositories for rcat

Users that are interested in rcat are comparing it to the libraries listed below

• xct / winssh
  ☆63Updated 2 years ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆146Updated 2 years ago
• amauricio / junkshell
  ☆75Updated 10 months ago
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆133Updated 4 years ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆154Updated 3 months ago
• synacktiv / CVE-2024-43468
  ☆94Updated last year
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆146Updated last year
• Karmaz95 / evasion
  AV Evasion Techniques
  ☆83Updated 3 years ago
• KriyosArcane / sliver-ligolo-ng
  An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface. Implementation of ligolo-ng into sliver
  ☆24Updated 11 months ago
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆259Updated last year
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆106Updated 3 months ago
• xct / SeDebugAbuse
  Get SYSTEM via SeDebugPrivilege
  ☆24Updated 3 years ago
• ibaiC / BadSuccessor
  A PoC for the dMSA Active Directory Domain Takeover deemed BadSuccessor
  ☆47Updated 6 months ago
• Sh4N4C1 / sh4loader
  ☆29Updated last year
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆191Updated 9 months ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆135Updated last year
• ThePorgs / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆303Updated 3 weeks ago
• synacktiv / Prox-Ez
  ☆104Updated 3 weeks ago
• powerseb / PowerExtract
  ☆120Updated 10 months ago
• xct / winpspy
  CLI monitor for windows process- & file activity
  ☆97Updated 5 years ago
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆82Updated 2 years ago
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆127Updated this week
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆126Updated last year
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.
  ☆184Updated 10 months ago
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆85Updated 3 years ago
• m8sec / CVE-2021-34527
  PrintNightmare (CVE-2021-34527) PoC Exploit
  ☆119Updated 3 years ago
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆235Updated 11 months ago
• san6051 / TeamsCh-Shell
  ☆38Updated 10 months ago
• w0Tx / generate-ad-username
  Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...
  ☆26Updated last year
• arth0sz / Practice-AD-CS-Domain-Escalation
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆141Updated 2 years ago