Alternatives and similar repositories for pyMetaTwin

Users that are interested in pyMetaTwin are comparing it to the libraries listed below

• jsecu / ModTask
  ☆53Updated 4 months ago
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆64Updated 2 years ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆105Updated 2 years ago
• NocteDefensor / SCCMDecryptor-BOF
  ☆51Updated 7 months ago
• deh00ni / NtDumpBOF
  ☆100Updated last year
• susMdT / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆52Updated 2 years ago
• antroguy / GetAccessTokenWithSSOCookie
  ☆49Updated 7 months ago
• grayhatkiller / SharpExShell
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75Updated last year
• grayhatkiller / wambam-bof
  ☆47Updated last month
• rasta-mouse / SpawnWith
  ☆109Updated 11 months ago
• decoder-it / NewMachineAccount
  ☆38Updated 11 months ago
• EricEsquivel / OpsLoader
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Updated last year
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆54Updated 2 months ago
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆55Updated last year
• nettitude / TokenCert
  TokenCert
  ☆102Updated last year
• antroguy / LocklessBof
  Lockless BOF
  ☆79Updated 8 months ago
• CodeXTF2 / bof_template
  BOF template with boflink and mutator kit support
  ☆48Updated 3 weeks ago
• pard0p / Remote-BOF-Runner
  Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …
  ☆88Updated 3 weeks ago
• Hagrid29 / BOF-CredUI
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆23Updated 3 years ago
• d4rkiZ / EmbedExeLnk-
  EmbedExeLnk by x86matthew modified by d4rkiZ
  ☆42Updated 2 years ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆38Updated last month
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆40Updated 2 years ago
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆64Updated last year
• logangoins / BadTakeover-BOF
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆85Updated 3 months ago
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆58Updated 2 years ago
• xforcered / VectoredExceptionHandling
  ☆35Updated last year
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆34Updated 2 years ago
• dis0rder0x00 / ParentProcessManipulation-LNK
  Using LNK files and user input simulation to start processes under explorer.exe
  ☆33Updated last year
• klezVirus / RAIWhateverTrigger
  Local SYSTEM auth trigger for relaying - X
  ☆155Updated 6 months ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆41Updated 2 years ago