Alternatives and similar repositories for XRulez

Users that are interested in XRulez are comparing it to the libraries listed below

• danielbohannon / Out-FINcodedCommand
  POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…
  ☆104Updated 8 years ago
• sensepost / liniaal
  Liniaal - A communication extension to Ruler
  ☆97Updated 7 years ago
• silentbreaksec / ThrowbackLP
  Listening Post for Throwback Implant
  ☆110Updated 9 years ago
• porterhau5 / BloodHound-Owned
  A collection of files for adding and leveraging custom properties in BloodHound.
  ☆186Updated 5 years ago
• vysecurity / genHTA
  Generates anti-sandbox analysis HTA files without payloads
  ☆120Updated 8 years ago
• mdsecactivebreach / PowerDNS
  PowerDNS: Powershell DNS Delivery
  ☆212Updated 6 years ago
• matthastings / DSCompromised
  ☆97Updated 9 years ago
• HarmJ0y / Misc-PowerShell
  Misc. PowerShell scripts
  ☆119Updated 9 years ago
• johnnyDEP / OWA-Toolkit
  Powershell module to assist in attacking Exchange/Outlook Web Access
  ☆182Updated 8 years ago
• vletoux / NTLMInjector
  In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)
  ☆169Updated 8 years ago
• chango77747 / AdEnumerator
  Active Directory enumeration from non-domain system.
  ☆117Updated 8 years ago
• cobbr / ObfuscatedEmpire
  ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.
  ☆230Updated 7 years ago
• sixdub / DomainTrustExplorer
  Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.
  ☆121Updated 5 years ago
• glinares / OfficeMalware
  ☆114Updated 8 years ago
• secabstraction / WmiSploit
  ☆164Updated 9 years ago
• HarmJ0y / ImpDump
  This is a simple parser for/decrypter for Impacket's esentutl.py utility. It assists with decrypting hashes and hash histories from ntds.…
  ☆71Updated 8 years ago
• huntresslabs / evading-autoruns
  Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)
  ☆105Updated 4 years ago
• bkup / SlackShell
  PowerShell to Slack C2
  ☆109Updated 7 years ago
• Arno0x / DNSDelivery
  DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.
  ☆146Updated 5 years ago
• Kevin-Robertson / Conveigh
  Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool
  ☆97Updated 8 years ago
• Project-Prismatica / Prismatica
  Responsive Command and Control System
  ☆104Updated 2 years ago
• glinares / Hephaestus
  Open Source Office Malware Generation & Polymorphic Engine for Red Teams and QA testing
  ☆95Updated 8 years ago
• JavelinNetworks / IR-Tools
  IR-Tools - PowerShell tools for IR
  ☆130Updated 8 years ago
• klsecservices / bat-armor
  Encode powershell payload into bat files
  ☆154Updated 7 years ago
• n00py / NorkNork
  Powershell Empire Persistence finder
  ☆120Updated 8 years ago
• enigma0x3 / Invoke-AltDSBackdoor
  ☆120Updated 9 years ago
• enigma0x3 / Powershell-Payload-Excel-Delivery
  Uses Invoke-Shellcode to execute a payload and persist on the system.
  ☆115Updated 8 years ago
• Cybereason / Invoke-WMILM
  ☆229Updated 7 years ago
• Cn33liz / CScriptShell
  CScriptShell, a Powershell Host running within cscript.exe
  ☆161Updated 8 years ago
• Cn33liz / VBSMeter
  VBS Reversed TCP Meterpreter Stager
  ☆89Updated 8 years ago