Alternatives and similar repositories for Eventlogedit-evtx--Evolution

Users that are interested in Eventlogedit-evtx--Evolution are comparing it to the libraries listed below

• anthemtotheego / SharpExec
  ☆347Updated 3 years ago
• dcsync / pycobalt
  Cobalt Strike Python API
  ☆300Updated 3 years ago
• outflanknl / NetshHelperBeacon
  Example DLL to load from Windows NetShell
  ☆180Updated 8 years ago
• hoangprod / AndrewSpecial
  AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
  ☆387Updated 6 years ago
• WithSecureLabs / ppid-spoofing
  Scripts for performing and detecting parent PID spoofing
  ☆146Updated 5 years ago
• 3gstudent / msbuild-inline-task
  ☆187Updated 4 years ago
• b4rtik / metasploit-execute-assembly
  Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
  ☆345Updated 4 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆233Updated 2 years ago
• anthemtotheego / SharpCradle
  ☆281Updated 4 years ago
• b4rtik / ATPMiniDump
  Evading WinDefender ATP credential-theft
  ☆256Updated 5 years ago
• ionescu007 / faxhell
  A Bind Shell Using the Fax Service and a DLL Hijack
  ☆331Updated 5 years ago
• outflanknl / Ps-Tools
  Ps-Tools, an advanced process monitoring toolkit for offensive operations
  ☆344Updated 4 years ago
• outflanknl / SharpHide
  Tool to create hidden registry keys.
  ☆480Updated 5 years ago
• rvrsh3ll / CPLResourceRunner
  Run shellcode from resource
  ☆259Updated 4 years ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆286Updated 7 years ago
• QAX-A-Team / EventCleaner
  A tool mainly to erase specified records from Windows event logs, with additional functionalities.
  ☆601Updated 6 years ago
• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆175Updated 4 years ago
• matterpreter / Shhmon
  Neutering Sysmon via driver unload
  ☆229Updated 2 years ago
• FSecureLABS / SharpClipHistory
  SharpClipHistory is a .NET application written in C# that can be used to read the contents of a user's clipboard history in Windows 10 st…
  ☆195Updated 5 years ago
• outflanknl / Excel4-DCOM
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆325Updated 6 years ago
• zcgonvh / NTDSDumpEx
  NTDS.dit offline dumper with non-elevated
  ☆219Updated 7 years ago
• threatexpress / cs2modrewrite
  Convert Cobalt Strike profiles to modrewrite scripts
  ☆604Updated 2 years ago
• BC-SECURITY / Invoke-PrintDemon
  This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.
  ☆202Updated 4 years ago
• checkymander / Sharp-WMIExec
  ☆209Updated 5 years ago
• itm4n / UsoDllLoader
  Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
  ☆389Updated 4 years ago
• slyd0g / PrimaryTokenTheft
  Steal a primary token and spawn cmd.exe using the stolen token
  ☆257Updated 4 years ago
• SpiderLabs / SharpCompile
  SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…
  ☆291Updated 4 years ago
• ramen0x3f / AggressorScripts
  ☆272Updated 2 years ago
• GhostPack / SharpDump
  SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.
  ☆666Updated 6 years ago
• 3gstudent / CLR-Injection
  Use CLR to inject all the .NET apps
  ☆184Updated 4 years ago