Alternatives and similar repositories for LogHunter

Users that are interested in LogHunter are comparing it to the libraries listed below

• Thunter-HackTeam / EvilentCoerce
  ☆145Updated 3 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆83Updated 11 months ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆41Updated last year
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆91Updated last year
• OleFredrik1 / remoteKrbRelayx
  A tool for coercing and relaying Kerberos authentication over DCOM and RPC.
  ☆127Updated last month
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆79Updated 5 months ago
• OtterHacker / AWSRedirector
  ☆57Updated 6 months ago
• MzHmO / DebugAmsi
  DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.
  ☆98Updated last year
• nbaertsch / AutoAppDomainHijack
  Automated .NET AppDomain hijack payload generation
  ☆127Updated 6 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆96Updated 3 months ago
• nettitude / TokenCert
  TokenCert
  ☆100Updated 9 months ago
• ASP4RUX / bypassEDR-AV
  ☆57Updated 9 months ago
• decoder-it / KrbRelayEx-RPC
  ☆191Updated 4 months ago
• synacktiv / CVE-2024-43468
  ☆91Updated 7 months ago
• rasta-mouse / SpawnWith
  ☆110Updated 6 months ago
• logangoins / Stifle
  .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS
  ☆149Updated 6 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆89Updated last year
• mertdas / SharpLateral
  Lateral Movement
  ☆124Updated last year
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆40Updated 7 months ago
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆94Updated 10 months ago
• p4p1 / havoc-bloodhound
  A GUI wrapper inside of Havoc to interact with bloodhound CE
  ☆72Updated last year
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆122Updated 10 months ago
• watchtowrlabs / CVE-2024-40711
  Pre-Auth Exploit for CVE-2024-40711
  ☆54Updated 11 months ago
• PShlyundin / TimeSync
  Tool to obtain hash using MS-SNTP for user accounts
  ☆25Updated 7 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆38Updated last year
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆54Updated last year
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆64Updated last year
• ghost-ng / slinger
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆52Updated last month
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆94Updated last month