Alternatives and similar repositories for RpcMotion

Users that are interested in RpcMotion are comparing it to the libraries listed below

• ricardojoserf / w11_shadow_copies
  Create, delete or list Shadows Copies using the VSS API using C++, C# or Python. Working on Windows 11
  ☆46Updated this week
• jsecu / ModTask
  ☆52Updated 3 months ago
• lsecqt / SessionView
  A portable C# utility for enumerating local and remote windows sessions
  ☆54Updated 2 weeks ago
• 0xTriboulet / rssh-rs
  ☆54Updated 7 months ago
• logangoins / BadTakeover-BOF
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆85Updated 2 months ago
• WKL-Sec / slack-udc2
  Cobalt Strike UDC2 implementation that provides an Slack C2 channel
  ☆57Updated last week
• deh00ni / NtDumpBOF
  ☆100Updated last year
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆105Updated 5 months ago
• tijme / nimplant-beacon-position-independent-c-code
  A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
  ☆66Updated 11 months ago
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆39Updated 10 months ago
• cogiceo / DACLSearch
  Exhaustive search and flexible filtering of Active Directory ACEs.
  ☆70Updated 2 months ago
• breakfix / SharpSCOM
  A C# utility for interacting with SCOM
  ☆95Updated last month
• T1erno / bin2shellcode
  C++ tool and library for converting .bin files to shellcode in multiple output formats.
  ☆34Updated 5 months ago
• dis0rder0x00 / stillepost
  Using Chromium-based browsers as a proxy for C2 traffic.
  ☆139Updated last month
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆64Updated last year
• nettitude / TokenCert
  TokenCert
  ☆102Updated last year
• SafeBreach-Labs / RPC-Racer
  Toolset to manipulate RPC clients by finding delayed services and masquerading as them
  ☆105Updated 4 months ago
• ricardojoserf / NativeTokenImpersonate
  Impersonate Tokens using only NTAPI functions
  ☆83Updated 9 months ago
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆89Updated 10 months ago
• ibaiC / FriendlyFireBOF
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆57Updated 9 months ago
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆72Updated 10 months ago
• safedv / GPOAnalyzer
  GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.
  ☆28Updated last year
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆41Updated 2 years ago
• jhalon / cSessionHop
  Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM
  ☆59Updated 3 weeks ago
• xforcered / VectoredExceptionHandling
  ☆35Updated last year
• leftp / RegPersist
  a BOF implementation of various registry persistence methods
  ☆92Updated 2 months ago
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆84Updated last year
• 0xTriboulet / ai-postex
  Proof-of-concept implementation of AI-enabled postex DLLs
  ☆53Updated 4 months ago
• sud0Ru / CPLDCOMTrigger
  CPL remote trigger
  ☆43Updated 2 weeks ago
• Shrfnt77 / AmsiBypass
  Bypassing Amsi using LdrLoadDll
  ☆47Updated last year