Alternatives and similar repositories for FaceDancer:

Users that are interested in FaceDancer are comparing it to the libraries listed below

• crawl3r / FunWithAMSI
  A repo to hold any bypasses I work on/study/whatever
  ☆19Updated 4 years ago
• djhohnstein / SharpEdge
  C# Implementation of Get-VaultCredential
  ☆13Updated 6 years ago
• vysecurity / AzureAppC2
  A script that can be deployed to Azure App for C2 / Proxy / Redirector
  ☆36Updated 5 years ago
• 0r13lc0ch4v1 / HideFromAMSI
  Bypass AMSI and Executing PowerShell scripts from C# - using CyberArk's method to bypass AMSI
  ☆30Updated 5 years ago
• tevora-threat / SharpSQL
  Quick and dirty .net console app for querying mssql servers.
  ☆20Updated 6 years ago
• checkymander / TokenContextManipulation
  Code that can be used to create/steal/manipulate token contexts in a program. Can be implemented into other C# projects.
  ☆12Updated 6 years ago
• thesnoom / extps-cobalt-strike-bof
  Extended Process List (Search functionality)
  ☆29Updated 4 years ago
• rvrsh3ll / Sharp-Suite
  My musings with C#
  ☆28Updated 2 years ago
• rmdavy / AmsiPEBWalkVBAx64
  ☆14Updated 4 years ago
• mitchmoser / SharPermission
  C# .NET Assembly for interacting with File Object DACLs
  ☆41Updated 4 years ago
• jnqpblc / SharpDir
  SharpDir is a simple code set to search both local and remote file systems for files and is compatible with Cobalt Strike.
  ☆26Updated 5 years ago
• vletoux / OxidBindings
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Updated 4 years ago
• bufferbandit / leak.docx
  Leak windows system info through a docx file
  ☆12Updated 5 years ago
• ThunderGunExpress / Reflective_Schtasks
  ☆54Updated 6 years ago
• benpturner / Invoke-DCOM
  C# DCOM Execution
  ☆18Updated 5 years ago
• RedLectroid / OutlookSend
  A C# tool to send emails through Outlook from the command line or in memory
  ☆31Updated 4 years ago
• NotMedic / SocksLauncher
  ☆14Updated 5 years ago
• checkymander / CoreSploit
  Initial Commit of Coresploit
  ☆56Updated 3 years ago
• vysecurity / WindfarmDynamite-CNA
  CobaltStrike Aggressor Script to utilise FuzzySec's Windows Notification Framework Research to Spawn a Shell under Explorer.exe
  ☆16Updated 5 years ago
• ThunderGunExpress / ThunderChrome
  ☆36Updated 6 years ago
• icebearfriend / deckbuilder
  Cobalt Strike cna script for randomized argument spoofing
  ☆52Updated 5 years ago
• slyd0g / SharpRoast-Parser
  Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.
  ☆32Updated 6 years ago
• slyd0g / SharpCrashEventLog
  C# port of LogServiceCrash
  ☆47Updated 4 years ago
• fashionproof / CheckSafeBoot
  I used this to see if an EDR is running in Safe Mode
  ☆36Updated 4 years ago
• freshness79 / unlock
  Microsoft Applocker evasion tool
  ☆38Updated 5 years ago
• EncodeGroup / AggressorScripts
  Simple Aggressor Scripts for Cobalt Strike
  ☆12Updated 4 years ago
• curi0usJack / rubeus2ccache
  Extracts all base64 ticket data from a rubeus /dump file and converts the tickets to ccache files for easy use with other tools.
  ☆66Updated 4 years ago
• jnqpblc / SharpSvc
  SharpSvc is a simple code set to interact with the SC Manager API and is compatible with Cobalt Strike.
  ☆25Updated last year
• ThunderGunExpress / UAC-TokenDuplication
  ☆36Updated 7 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆27Updated 5 years ago