Alternatives and similar repositories for OSEP:

Users that are interested in OSEP are comparing it to the libraries listed below

• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆98Updated last year
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆50Updated last year
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆88Updated 2 years ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• yo-yo-yo-jbo / injection_and_hooking_intro
  ☆38Updated last year
• 0xsp-SRD / callback_injection-Csharp
  this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…
  ☆84Updated 2 years ago
• Nariod / laz-y
  Automating payload generation for OSEP labs and exam.
  ☆34Updated 2 years ago
• amauricio / junkshell
  ☆29Updated last year
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆62Updated 3 weeks ago
• xct / SeDebugAbuse
  Get SYSTEM via SeDebugPrivilege
  ☆18Updated 2 years ago
• waawaa / AMSI_Rubeus_bypass
  ☆61Updated 2 years ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated last year
• Wh04m1001 / MSIExecEoP
  Arbitrary File Delete in Windows Installer before 10.0.19045.2193
  ☆29Updated 2 years ago
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆49Updated 3 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆39Updated last year
• 0xNinjaCyclone / IATUnhooker
  IAT Unhooking proof-of-concept
  ☆29Updated 9 months ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆35Updated last year
• Wh04m1001 / Random
  Random
  ☆32Updated 2 years ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆76Updated last year
• Tarakhs / ToyingWithHellsGate
  Brief writeup of post exploitation methodologies.
  ☆17Updated last year
• WhiteOakSecurity / MiniDumpDotNet
  ☆18Updated 2 years ago
• NVISOsecurity / cs2br-bof
  ☆61Updated last week
• Yeeb1 / SharpRDPlusSnatcher
  Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…
  ☆16Updated 10 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆50Updated 4 months ago
• mmnoureldin / UnmanagedPowerShell
  ☆27Updated last year
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆114Updated last year
• Wh04m1001 / CVE-2022-3368
  ☆29Updated 2 years ago