Alternatives and similar repositories for Nightmangle:

Users that are interested in Nightmangle are comparing it to the libraries listed below

• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆193Updated 7 months ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆149Updated 8 months ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆140Updated 7 months ago
• nbaertsch / AutoAppDomainHijack
  Automated .NET AppDomain hijack payload generation
  ☆119Updated last month
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆143Updated 8 months ago
• cybersectroll / TrollAMSI
  ☆161Updated 2 months ago
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆182Updated last year
• login-securite / conpass
  Continuous password spraying tool
  ☆122Updated last month
• Adaptix-Framework / AdaptixC2
  ☆131Updated this week
• t3l3machus / ACEshark
  ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…
  ☆81Updated 2 weeks ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆179Updated 3 months ago
• NtDallas / Svartalfheim
  Stage 0
  ☆148Updated last month
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆154Updated last month
• asmtlab / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆93Updated 3 months ago
• mandiant / msi-search
  ☆269Updated last year
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆153Updated last month
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆58Updated last week
• synacktiv / CVE-2024-43468
  ☆74Updated 2 weeks ago
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆62Updated 7 months ago
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆92Updated 2 months ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆101Updated last week
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆141Updated 6 months ago
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆102Updated last year
• MzHmO / WhoIsWho
  Amazing whoami alternatives
  ☆138Updated 10 months ago
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆55Updated 2 months ago
• decoder-it / KrbRelayEx
  ☆284Updated last month
• WKL-Sec / GregsBestFriend
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆180Updated last year
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆136Updated 2 weeks ago
• V-i-x-x / AMSI-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆215Updated 3 months ago
• SaadAhla / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆145Updated last year