Alternatives and similar repositories for rcat

Users that are interested in rcat are comparing it to the libraries listed below

• xct / winssh
  ☆61Updated 2 years ago
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆122Updated 3 years ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆138Updated last year
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆142Updated 5 months ago
• amauricio / junkshell
  ☆71Updated 6 months ago
• synacktiv / CVE-2024-43468
  ☆91Updated 8 months ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆145Updated last year
• synacktiv / Prox-Ez
  ☆95Updated 7 months ago
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆101Updated 2 years ago
• CCob / gssapi-abuse
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆171Updated last month
• m8sec / CVE-2021-34527
  PrintNightmare (CVE-2021-34527) PoC Exploit
  ☆115Updated 2 years ago
• 3lp4tr0n / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆161Updated 2 months ago
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆85Updated 2 years ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆86Updated 3 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 3 years ago
• xct / SeDebugAbuse
  Get SYSTEM via SeDebugPrivilege
  ☆21Updated 3 years ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆237Updated 2 weeks ago
• Sh4N4C1 / sh4loader
  ☆29Updated last year
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆107Updated 3 years ago
• w0Tx / generate-ad-username
  Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...
  ☆24Updated 7 months ago
• csandker / pxethiefy
  ☆70Updated 7 months ago
• MzHmO / TGSThief
  My implementation of the GIUDA project in C++
  ☆186Updated 2 years ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆130Updated 7 months ago
• p1papupa / Umbrella
  Umbrella will protect your shellcode from the rain.
  ☆30Updated 3 months ago
• 0xv1n / RemoteSessionEnum
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆119Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆165Updated last year
• Karmaz95 / evasion
  AV Evasion Techniques
  ☆79Updated 3 years ago
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆121Updated 3 years ago
• m3f157O / combine_harvester
  Rust in-memory dumper
  ☆108Updated 2 years ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆140Updated last year