Alternatives and similar repositories for Powershell-Persistance

Users that are interested in Powershell-Persistance are comparing it to the libraries listed below

• EvilBytecode / GoEvilDocs
  Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.
  ☆13Updated 7 months ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆23Updated 7 months ago
• C5Hackr / ARM64_AmsiPatch
  ☆21Updated 7 months ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆24Updated 7 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆19Updated 2 years ago
• ricardojoserf / SharpObfuscate
  Obfuscate payloads using IPv4, IPv6, MAC or UUID strings
  ☆22Updated last year
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 2 years ago
• 5tuk0v / PointyTokenz
  Windows Access token manipulation tool made in C#
  ☆24Updated 3 months ago
• S12cybersecurity / ETWEvasionToolkit
  Toolkit of Projects to attack and evade Event Trace for Windows
  ☆25Updated 3 months ago
• EvilBytecode / Evil-Go
  A malicous Golang Package
  ☆15Updated 7 months ago
• EvilBytecode / SsnRetrieval
  Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…
  ☆14Updated 7 months ago
• affix / rusty-hollow
  Unix Process hollowing in rust
  ☆22Updated 11 months ago
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆16Updated 2 years ago
• Macmod / YesPhish
  An improved fork of NoPhish.
  ☆13Updated 6 months ago
• dmcxblue / NiceDayPhishing
  ☆19Updated last year
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆25Updated 3 years ago
• rbmm / Hollowed-Process
  ☆30Updated 3 months ago
• TraiLeR2 / CVE-2023-36168
  An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component
  ☆11Updated 2 years ago
• som3canadian / Mythic_NimSyscallPacker_Wrapper
  Mythic C2 wrapper for NimSyscallPacker
  ☆25Updated 8 months ago
• ricardojoserf / BOF_Files
  Repository to gather the BOF files I will be developing
  ☆10Updated last year
• Adaptix-Framework / templates-extender
  Templates for developing your own listeners and agents for AdaptixC2.
  ☆38Updated 2 weeks ago
• scriptchildie / gohellsgate
  Golang Implementation of Hell's gate
  ☆20Updated 2 years ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 2 years ago
• fern89 / runpe-x64
  RunPE adapted for x64 and written in C, does not use RWX
  ☆28Updated last year
• gemini-security / GithubC2
  ☆27Updated 2 years ago
• Tylous / Dent
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆15Updated 2 years ago
• HulkOperator / AuthStager
  ☆59Updated last year
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆18Updated 2 years ago
• mlcsec / SigFinder
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Updated last year