Alternatives and similar repositories for Windows-API-for-Red-Team

Users that are interested in Windows-API-for-Red-Team are comparing it to the libraries listed below

• CyberSecurityUP / Awesome-EDR-Evasion
  ☆84Updated 3 months ago
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆44Updated 7 months ago
• ASP4RUX / Invoke-AMSI
  ☆35Updated 6 months ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆64Updated 4 months ago
• amauricio / junkshell
  ☆69Updated 2 months ago
• dagowda / PrimeEncryptor
  ☆70Updated last month
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆170Updated 2 weeks ago
• 0xNinjaCyclone / PowerLoad3r
  Malicious powershell scripts loader designed to avoid detection.
  ☆51Updated last year
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆98Updated 2 months ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆96Updated 3 years ago
• Aur3ns / Morpheus
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆96Updated last month
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆46Updated 4 months ago
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆78Updated 2 years ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• ASP4RUX / bypassEDR-AV
  ☆56Updated 6 months ago
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆39Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆49Updated 5 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆147Updated last year
• cybrly / badsuccessor
  ☆90Updated this week
• g0h4n / RDE1
  RDE1 (Rusty Data Exfiltrator) is client and server tool allowing auditor to extract files from DNS and HTTPS protocols written in Rust. �…
  ☆40Updated 2 months ago
• p4p1 / havoc-bloodhound
  A GUI wrapper inside of Havoc to interact with bloodhound CE
  ☆71Updated last year
• Helixo32 / GetSystem-LCI
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆34Updated 6 months ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆82Updated last year
• mertdas / SharpLateral
  Lateral Movement
  ☆125Updated last year
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆148Updated 11 months ago
• BlackShell256 / Null-AMSI
  Null-AMSI is an AMSI and ETW bypass that takes advantage of .NET types (.NET Reflection) to bypassing AV/EDR.
  ☆66Updated this week
• chebuya / exploits
  Repo for all my exploits/PoCs
  ☆50Updated 3 weeks ago
• 0xBienCuit / InfraRed-AWS
  ☆59Updated 7 months ago
• IAMinZoho / OFFSEC-PowerShell
  My Favorite Offensive Security Scripts
  ☆71Updated last month
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆90Updated 11 months ago