Alternatives and similar repositories for DKMC:

Users that are interested in DKMC are comparing it to the libraries listed below

• rastating / slae
  The source code of the SLAE assignments documented at https://rastating.github.io/
  ☆23Updated 6 years ago
• byt3bl33d3r / herpaderping
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆19Updated 4 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• SneakyNachos / MalwareAnalysisTraining
  Work in Progress repo
  ☆14Updated 5 years ago
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆17Updated 4 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 6 years ago
• karol-gruszczyk / win-rootkit
  ☆23Updated 9 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆58Updated 5 years ago
• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆27Updated 7 years ago
• ChaitanyaHaritash / wufu
  Fuzzing Framework
  ☆10Updated 7 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆16Updated 3 years ago
• vletoux / Bluekeep-scanner
  BlueKeep powershell scanner (based on c# code)
  ☆38Updated 5 years ago
• ahhh / GoRedShell
  A cross platform tool for verifying credentials and executing single commands
  ☆32Updated 5 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 7 years ago
• 3gstudent / SCTPersistence
  Create COM Objects backed by Scripts, not DLLs
  ☆9Updated 7 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 7 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆31Updated 4 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• hotnops / mythic-sync
  A tool to sync mythic events with ghostwriter oplog.
  ☆12Updated 3 months ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆43Updated 7 years ago
• WithSecureLabs / dotnet-gargoyle
  A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique
  ☆51Updated 6 years ago
• Iamgublin / CVE-2019-0803
  Win32k Elevation of Privilege Poc
  Updated 5 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 3 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 3 years ago
• DanusMinimus / Injections
  A repository where I share my injection implemintations
  ☆29Updated 4 years ago
• qsecure-labs / Sp00fer
  Sp00fer blog post -
  ☆26Updated 2 years ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆42Updated 6 years ago
• freshness79 / unlock
  Microsoft Applocker evasion tool
  ☆38Updated 5 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago