Alternatives and similar repositories for goexec

Users that are interested in goexec are comparing it to the libraries listed below

• mverschu / CVE-2025-33073
  PoC Exploit for the NTLM reflection SMB flaw.
  ☆615Updated last week
• Offensive-Panda / ShadowDumper
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆567Updated 7 months ago
• wh0amitz / SharpADWS
  Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).
  ☆584Updated last year
• lypd0 / DeadPotato
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆454Updated last year
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆535Updated 2 months ago
• Adaptix-Framework / Extension-Kit
  AdaptixFramework Extension Kit
  ☆358Updated last week
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆621Updated last year
• wietze / ArgFuscator.net
  ArgFuscator.net is an open-source, stand-alone web application that helps generate obfuscated command lines for common system-native exec…
  ☆388Updated 9 months ago
• Maldev-Academy / ExecutePeFromPngViaLNK
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆465Updated last year
• Prepouce / CoercedPotato
  A Windows potato to privesc
  ☆389Updated last year
• tylerdotrar / SigmaPotato
  SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…
  ☆447Updated last year
• CICADA8-Research / RemoteKrbRelay
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆633Updated 8 months ago
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆504Updated 8 months ago
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆402Updated 2 years ago
• TwoSevenOneT / WSASS
  This is the tool to dump the LSASS process on modern Windows 11
  ☆540Updated 2 months ago
• icyguider / UAC-BOF-Bonanza
  Collection of UAC Bypass Techniques Weaponized as BOFs
  ☆593Updated last year
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆450Updated 2 years ago
• Teach2Breach / Tempest
  A command and control framework written in rust.
  ☆382Updated 4 months ago
• 0x6rss / CVE-2025-24071_PoC
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆390Updated 10 months ago
• D00Movenok / BounceBack
  ↕️🤫 Stealth redirector for your red team operation security
  ☆1,051Updated 6 months ago
• REDMED-X / OperatorsKit
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆665Updated 5 months ago
• jfjallid / go-secdump
  Tool to remotely dump secrets from the Windows registry
  ☆521Updated 2 months ago
• RalfHacker / Kerbeus-BOF
  BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
  ☆529Updated last month
• hackvens / CoercedPotato
  ☆232Updated last year
• decoder-it / LocalPotato
  ☆705Updated 2 years ago
• ttpreport / ligolo-mp
  Multiplayer pivoting solution
  ☆479Updated 2 months ago
• Ridter / atexec-pro
  Fileless atexec, no more need for port 445
  ☆403Updated last year
• wh0amitz / KRBUACBypass
  UAC Bypass By Abusing Kerberos Tickets
  ☆506Updated 2 years ago
• XiaoliChan / wmiexec-Pro
  New generation of wmiexec.py
  ☆1,244Updated 2 weeks ago
• TwoSevenOneT / EDR-Freeze
  EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.
  ☆792Updated 2 months ago