Alternatives and similar repositories for PhantomsGate

Users that are interested in PhantomsGate are comparing it to the libraries listed below

• HulkOperator / AuthStager
  ☆59Updated last year
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆55Updated 2 years ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆64Updated last year
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆48Updated 2 years ago
• OtterHacker / Cerbere
  ☆49Updated 2 years ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆32Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated 3 months ago
• Offensive-Panda / .NET_PROFILER_DLL_LOADING
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆47Updated last year
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆33Updated 2 years ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆51Updated 2 years ago
• brosck / APIHookingDetector
  「⚙️」Detect which native Windows API's (NtAPI) are being hooked
  ☆39Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆74Updated 2 years ago
• nickvourd / RTI-Toolkit
  Remote Template Injection Toolkit
  ☆46Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated last year
• cyndicatelabs / brc4_profile_maker
  An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.
  ☆31Updated 7 months ago
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆52Updated 2 years ago
• Bl4ckM1rror / PEAs
  ☆61Updated 2 years ago
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆55Updated 2 years ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆77Updated 2 years ago
• iomoath / RedWardenLite
  A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.
  ☆45Updated 2 years ago
• cybersectroll / TrollDump
  ☆83Updated last year
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆50Updated last year
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆93Updated last year
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆41Updated 11 months ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆35Updated 2 years ago
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆39Updated 3 years ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year