Alternatives and similar repositories for Havoc-ProfileGenerator

Users that are interested in Havoc-ProfileGenerator are comparing it to the libraries listed below

• nickvourd / Rocabella
  Sniffing files generator
  ☆59Updated 6 months ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆46Updated last year
• OffenseTeacher / Steganim
  ☆47Updated 2 years ago
• OtterHacker / Cerbere
  ☆48Updated 2 years ago
• rkbennett / pybof
  Python module for running BOFs
  ☆72Updated 2 years ago
• xelemental / Mal-LNK-Generator
  ☆34Updated 4 months ago
• Bl4ckM1rror / PEAs
  ☆59Updated last year
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆65Updated 7 months ago
• HulkOperator / AuthStager
  ☆57Updated 10 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated last year
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated 2 years ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆36Updated 4 months ago
• patrickt2017 / VEHNetLoader
  Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies
  ☆38Updated last month
• rvrsh3ll / DInjector
  Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
  ☆22Updated 2 years ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆86Updated 2 years ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆91Updated last year
• Offensive-Panda / .NET_PROFILER_DLL_LOADING
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆43Updated last year
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated 2 years ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆75Updated 2 years ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• myexploit / living_off_the_land
  ☆44Updated last year
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆31Updated last year
• kapellos / VladimiRED
  ☆19Updated 8 months ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆82Updated 9 months ago
• nettitude / SharpConflux
  ☆65Updated last year
• cybersectroll / TrollDump
  ☆82Updated last year
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated 2 years ago
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆55Updated 8 months ago
• rasta-mouse / SpawnWith
  ☆110Updated 6 months ago