Alternatives and similar repositories for IRTriageCMD:

Users that are interested in IRTriageCMD are comparing it to the libraries listed below

• mobdk / NewShell
  Reverse shell without Windows cmd.exe, using ReactOS cmd.dll as shellcode
  ☆22Updated 4 years ago
• perturbed-platypus / UEFIWriteCSharp
  ☆41Updated 5 years ago
• ihack4falafel / ReverseShell
  TCP reverse shell written in C# with the option to choose between Windows command prompt or MS powershell.
  ☆26Updated 5 years ago
• malcomvetter / WMIProcessWatcher
  An example pattern in C# for using WMI to monitor process creation and termination events.
  ☆51Updated 6 years ago
• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• ALBY-Project / ALBY
  ☆21Updated 6 years ago
• RedyOpsResearchLabs / SEP-14.2-Arbitrary-Write
  CVE-2020-5837 exploit
  ☆41Updated 4 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆58Updated 5 years ago
• Arno0x / TCPRelayInjecter2
  Tool for injecting a "TCP Relay" managed assembly into an unmanaged process
  ☆64Updated 5 years ago
• HarmJ0y / Arya
  Arya is a simple obfuscator for .NET binaries.
  ☆39Updated 7 years ago
• DissectMalware / ClipboardWatcher
  Monitor the textual data pasted into Windows clipboard
  ☆28Updated 6 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• cobbr / C2Bridge
  C2Bridges allow developers to create new custom communication protocols and quickly utilize them within Covenant.
  ☆69Updated 3 years ago
• djhohnstein / wlbsctrl_poc
  C++ POC code for the wlbsctrl.dll hijack on IKEEXT
  ☆53Updated 5 years ago
• paranoidninja / 0xdarkvortex-red-team-ttps-part-2
  Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2
  ☆18Updated 4 years ago
• FSecureLABS / SharpGPO-RemoteAccessPolicies
  A C# tool for enumerating remote access policies through group policy.
  ☆71Updated 5 years ago
• Cn33liz / p0wnedLoader
  ☆75Updated 6 years ago
• padovah4ck / RedSharp
  Penetration Test / Read Team - C# tools repository
  ☆56Updated 3 years ago
• vletoux / ADSecrets
  Set of ultra technical notes about AD
  ☆18Updated 6 years ago
• kafkaesqu3 / subtee-gist-mirror
  few months old but better than nothing
  ☆58Updated 2 years ago
• foxglovesec / RottenPotatoNG
  New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.
  ☆36Updated 7 years ago
• Cn33liz / p0wnedReverse
  PowerShell Runspace Connect-Back Shell
  ☆26Updated 9 years ago
• Raikia / SharpStat
  C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB to read and delete the file remotely
  ☆38Updated 5 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 7 years ago
• skelsec / LocalNTLMTest
  Tool to acquire netNTLM hashes on a local machine wihtout network traffic
  ☆12Updated 6 years ago
• 0xbadjuju / TellMeYourSecrets
  A C# DLL to Dump LSA Secrets
  ☆57Updated 6 years ago
• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆27Updated 5 years ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆41Updated 6 years ago
• hoangprod / COMHijacker
  Persistent through COM Hijacking
  ☆20Updated 6 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago