Alternatives and similar repositories for NetLoader:

Users that are interested in NetLoader are comparing it to the libraries listed below

• G0ldenGunSec / SharpSecDump
  .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
  ☆608Updated 2 years ago
• TheWover / CertStealer
  A .NET tool for exporting and importing certificates without touching disk.
  ☆487Updated 3 years ago
• med0x2e / GadgetToJScript
  A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …
  ☆943Updated 3 years ago
• CCob / SharpBlock
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,140Updated 4 years ago
• Flangvik / BetterSafetyKatz
  Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…
  ☆860Updated 4 years ago
• Aetsu / OffensivePipeline
  OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team…
  ☆806Updated last year
• b4rtik / SharpKatz
  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
  ☆997Updated 3 years ago
• rasta-mouse / TikiTorch
  Process Injection
  ☆761Updated 3 years ago
• mgeeky / Stracciatella
  OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…
  ☆519Updated 2 years ago
• tevora-threat / SharpView
  C# implementation of harmj0y's PowerView
  ☆1,030Updated last year
• NUL0x4C / AtomLdr
  A DLL loader with advanced evasive features
  ☆711Updated 2 years ago
• GhostPack / SharpWMI
  SharpWMI is a C# implementation of various WMI functionality.
  ☆758Updated 4 years ago
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆474Updated 9 months ago
• PwnDexter / SharpEDRChecker
  Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…
  ☆706Updated last year
• Octoberfest7 / Inline-Execute-PE
  Execute unmanaged Windows executables in CobaltStrike Beacons
  ☆663Updated 2 years ago
• Mr-Un1k0d3r / RedTeamCSharpScripts
  C# Script used for Red Team
  ☆719Updated 3 years ago
• djhohnstein / SharpChromium
  .NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.
  ☆711Updated 4 years ago
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆397Updated 7 months ago
• S3cur3Th1sSh1t / Invoke-SharpLoader
  ☆356Updated 3 years ago
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆630Updated 2 years ago
• MythicAgents / Apollo
  A .NET Framework 4.0 Windows Agent
  ☆471Updated last week
• enjoiz / Privesc
  Windows batch script that finds misconfiguration issues which can lead to privilege escalation.
  ☆594Updated 4 months ago
• Kevin-Robertson / InveighZero
  .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
  ☆794Updated 2 years ago
• NotMedic / NetNTLMtoSilverTicket
  SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
  ☆840Updated 3 years ago
• padovah4ck / PSByPassCLM
  Bypass for PowerShell Constrained Language Mode
  ☆388Updated 3 years ago
• itm4n / PPLdump
  Dump the memory of a PPL with a userland exploit
  ☆868Updated 2 years ago
• mandiant / DueDLLigence
  ☆469Updated last year
• wietze / HijackLibs
  Project for tracking publicly disclosed DLL Hijacking opportunities.
  ☆735Updated last week
• FuzzySecurity / StandIn
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆758Updated last year
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆709Updated 7 months ago