Alternatives and similar repositories for certipy-merged

Users that are interested in certipy-merged are comparing it to the libraries listed below

• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆274Updated 5 months ago
• decoder-it / KrbRelay-SMBServer
  ☆229Updated last year
• CompassSecurity / bloodhoundce-resources
  ☆83Updated this week
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆228Updated 9 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆211Updated 5 months ago
• mandiant / ccmpwn
  ☆214Updated last year
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆153Updated last month
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆362Updated 2 months ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆267Updated 2 weeks ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆250Updated last week
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆204Updated last year
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆329Updated last week
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆256Updated 9 months ago
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆179Updated last month
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆186Updated 7 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆195Updated this week
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆209Updated last year
• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆174Updated last month
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆340Updated last year
• ZERODETECTION / MSC_Dropper
  ☆226Updated last year
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆277Updated 7 months ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆209Updated last year
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆171Updated last month
• cybersectroll / TrollAMSI
  ☆186Updated 5 months ago
• akamai / BadSuccessor
  ☆219Updated 6 months ago
• mallo-m / Cpp-ExecAssembly
  C++ Reflective Assembly Loader
  ☆29Updated 8 months ago
• skelsec / pysnaffler
  pysnaffler
  ☆106Updated 3 months ago
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆114Updated 4 months ago
• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆174Updated 11 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆241Updated last month