Alternatives and similar repositories for goexec

Users that are interested in goexec are comparing it to the libraries listed below

• mverschu / CVE-2025-33073
  PoC Exploit for the NTLM reflection SMB flaw.
  ☆611Updated 6 months ago
• wh0amitz / SharpADWS
  Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).
  ☆580Updated last year
• Offensive-Panda / ShadowDumper
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆568Updated 7 months ago
• lypd0 / DeadPotato
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆449Updated last year
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆531Updated last month
• Adaptix-Framework / Extension-Kit
  AdaptixFramework Extension Kit
  ☆327Updated this week
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆620Updated last year
• CICADA8-Research / RemoteKrbRelay
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆627Updated 7 months ago
• tylerdotrar / SigmaPotato
  SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…
  ☆443Updated last year
• Maldev-Academy / ExecutePeFromPngViaLNK
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆462Updated last year
• Prepouce / CoercedPotato
  A Windows potato to privesc
  ☆390Updated last year
• wietze / ArgFuscator.net
  ArgFuscator.net is an open-source, stand-alone web application that helps generate obfuscated command lines for common system-native exec…
  ☆387Updated 8 months ago
• Teach2Breach / Tempest
  A command and control framework written in rust.
  ☆381Updated 3 months ago
• TwoSevenOneT / WSASS
  This is the tool to dump the LSASS process on modern Windows 11
  ☆537Updated 2 months ago
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆501Updated 7 months ago
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆401Updated 2 years ago
• icyguider / UAC-BOF-Bonanza
  Collection of UAC Bypass Techniques Weaponized as BOFs
  ☆588Updated last year
• wh0amitz / KRBUACBypass
  UAC Bypass By Abusing Kerberos Tickets
  ☆505Updated 2 years ago
• Ridter / atexec-pro
  Fileless atexec, no more need for port 445
  ☆404Updated last year
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆448Updated 2 years ago
• RalfHacker / Kerbeus-BOF
  BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
  ☆523Updated last month
• REDMED-X / OperatorsKit
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆658Updated 4 months ago
• hackvens / CoercedPotato
  ☆233Updated last year
• Meowmycks / LetMeowIn
  A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
  ☆443Updated last year
• XiaoliChan / wmiexec-Pro
  New generation of wmiexec.py
  ☆1,236Updated last month
• ricardojoserf / NativeDump
  Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)
  ☆694Updated 7 months ago
• expl0itabl3 / Toolies
  Ad hoc collection of Red Teaming & Active Directory tooling.
  ☆225Updated 2 years ago
• 0x6rss / CVE-2025-24071_PoC
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆388Updated 9 months ago
• jfjallid / go-secdump
  Tool to remotely dump secrets from the Windows registry
  ☆517Updated last month
• dobin / SuperMega
  Stealthily inject shellcode into an executable
  ☆428Updated 2 months ago