Alternatives and similar repositories for certi:

Users that are interested in certi are comparing it to the libraries listed below

• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆270Updated 3 years ago
• rvazarkar / GMSAPasswordReader
  ☆217Updated 2 years ago
• garrettfoster13 / aced
  ☆157Updated 5 months ago
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆235Updated last year
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆118Updated 4 years ago
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆251Updated 5 months ago
• fortalice / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆328Updated last year
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆236Updated 2 weeks ago
• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆173Updated 4 years ago
• ShutdownRepo / ShadowCoerce
  MS-FSRVP coercion abuse PoC
  ☆288Updated 3 years ago
• ly4k / PetitPotam
  Python implementation for PetitPotam
  ☆196Updated 3 years ago
• micahvandeusen / gMSADumper
  Lists who can read any gMSA password blobs and parses them if the current user has access.
  ☆273Updated last year
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆260Updated 4 years ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆267Updated 2 years ago
• Z4kSec / Masky
  Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
  ☆388Updated last year
• ly4k / BloodHound
  Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements
  ☆150Updated 2 years ago
• cube0x0 / SharpSystemTriggers
  Collection of remote authentication triggers in C#
  ☆482Updated 11 months ago
• dirkjanm / forest-trust-tools
  Proof-of-concept tools for my AD Forest trust research
  ☆208Updated 10 months ago
• SecuraBV / Timeroast
  Timeroasting scripts by Tom Tervoort
  ☆281Updated last year
• mdsecactivebreach / Farmer
  ☆379Updated 3 years ago
• fashionproof / EnableAllTokenPrivs
  ☆76Updated 5 years ago
• xpn / sccmwtf
  ☆151Updated 2 months ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆166Updated 2 years ago
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆84Updated 2 years ago
• p0dalirius / pyLAPS
  Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.
  ☆105Updated 5 months ago
• PShlyundin / ldap_shell
  AD ACL abuse
  ☆305Updated 3 weeks ago
• Luct0r / KerberOPSEC
  OPSEC safe Kerberoasting in C#
  ☆191Updated 2 years ago
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆118Updated 11 months ago
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆186Updated last month
• fortalice / modifyCertTemplate
  ADCS cert template modification and ACL enumeration
  ☆136Updated last year