Alternatives and similar repositories for LolDriverScan

Users that are interested in LolDriverScan are comparing it to the libraries listed below

• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆187Updated last year
• floesen / EventLogCrasher
  ☆192Updated last year
• akamai / DDSpoof
  DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.
  ☆133Updated last year
• skelsec / evilrdp
  ☆306Updated 10 months ago
• trustedsec / specula
  ☆229Updated 7 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆149Updated last year
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆280Updated 2 years ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 7 months ago
• deepinstinct / NoFilter
  ☆301Updated last year
• ricardojoserf / WhoamiAlternatives
  Different methods to get current username without using whoami
  ☆182Updated last year
• mandiant / msi-search
  ☆290Updated 2 years ago
• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆211Updated last year
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆203Updated last year
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆166Updated last year
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆256Updated last month
• p0dalirius / FindUnusualSessions
  A tool to remotely detect unusual sessions opened on windows machines using RPC
  ☆118Updated 7 months ago
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆230Updated last year
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆127Updated last year
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆85Updated 3 years ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆155Updated last year
• SafeBreach-Labs / wd-pretender
  ☆132Updated 2 years ago
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆202Updated 9 months ago
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆284Updated last month
• CrowdStrike / sccmhound
  A BloodHound collector for Microsoft Configuration Manager
  ☆359Updated 6 months ago
• MorDavid / vCenterHound
  Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges
  ☆175Updated 5 months ago
• blackhillsinfosec / skyhook
  A round-trip obfuscated HTTP file transfer setup built to bypass IDS detections.
  ☆272Updated last year
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆232Updated 11 months ago
• cybersectroll / TrollAMSI
  ☆186Updated 7 months ago
• lolc2 / lolc2.github.io
  lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
  ☆252Updated 7 months ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆152Updated last year