Alternatives and similar repositories for MyMSIAnalyzer

Users that are interested in MyMSIAnalyzer are comparing it to the libraries listed below

• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆63Updated last year
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆116Updated 3 months ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆65Updated 10 months ago
• OtterHacker / Hooker
  ☆108Updated 11 months ago
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆140Updated last year
• whokilleddb / ASPxecute
  Execute shellcode via ASPNET compiler
  ☆49Updated last week
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆120Updated 3 months ago
• CroodSolutions / AutoRMM
  AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…
  ☆87Updated 2 months ago
• sensepost / mydumbedr
  ☆121Updated last year
• TheSleekBoyCompany / AnsibleHound
  Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph
  ☆54Updated last month
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆126Updated 7 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆199Updated 7 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 2 months ago
• jeanlucdupont / EXEfromCER
  PoC that downloads an executable from a public SSL certificate
  ☆127Updated 2 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 6 months ago
• ASP4RUX / bypassEDR-AV
  ☆59Updated 10 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆177Updated 4 months ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆43Updated last year
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆87Updated 7 months ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆124Updated last year
• yo-yo-yo-jbo / dumping_lsass
  The different ways to dump lsass
  ☆190Updated last month
• m1ddl3w4r3 / WSL_Payload_Builder
  A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.
  ☆70Updated last month
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆100Updated 3 months ago
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆77Updated 10 months ago
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated last year
• Semperis / GoldenDMSA
  This tool exploits Golden DMSA attack against delegated Managed Service Accounts.
  ☆78Updated 2 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆96Updated 5 months ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆91Updated last year
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆64Updated 4 months ago