Alternatives and similar repositories for dumping_lsass

Users that are interested in dumping_lsass are comparing it to the libraries listed below

• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 7 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆186Updated 7 months ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆154Updated last year
• stevenyu113228 / BloodHound-MCP
  ☆154Updated 8 months ago
• 1r0BIT / TaskHound
  Tool to enumerate privileged Scheduled Tasks on Remote Systems
  ☆213Updated this week
• 3lp4tr0n / SessionHop
  Windows Session Hijacking via COM
  ☆294Updated last week
• kfallahi / UnderlayCopy
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆232Updated last month
• SenSecurity / Founding
  Founding is a generator that will create a loader encrypted or obfuscated with different execution types
  ☆97Updated 4 months ago
• LeighlinRamsay / GunnerC2
  ☆151Updated 2 months ago
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆282Updated 2 weeks ago
• rad9800 / byor
  ☆157Updated 6 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆280Updated 8 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆128Updated 5 months ago
• p0dalirius / ShareHound
  A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily
  ☆239Updated last week
• wariv / DarkLnk
  Build sneaky & malicious LNK files.
  ☆155Updated 5 months ago
• cybrly / badsuccessor
  ☆120Updated 6 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆209Updated last year
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆163Updated 4 months ago
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆216Updated 11 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆149Updated last year
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆115Updated 6 months ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆269Updated last year
• ZephrFish / pyLDAPGui
  Python based GUI for browsing LDAP
  ☆175Updated 2 weeks ago
• Maldev-Academy / MaldevAcademyLdr.2
  RunPE implementation with multiple evasive techniques
  ☆256Updated 3 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆242Updated last month
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆168Updated 10 months ago
• badsectorlabs / ludus_adaptix_c2
  An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts
  ☆174Updated 6 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆211Updated 5 months ago
• yehia-mamdouh / ZeroProbe
  ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…
  ☆107Updated 9 months ago
• ShutdownRepo / dcshadow
  Python alternative to Mimikatz lsadump::dcshadow
  ☆155Updated 6 months ago