Alternatives and similar repositories for LolDriverScan

Users that are interested in LolDriverScan are comparing it to the libraries listed below

• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆186Updated last year
• floesen / EventLogCrasher
  ☆189Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆177Updated 4 months ago
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆140Updated last year
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆166Updated 11 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year
• ricardojoserf / WhoamiAlternatives
  Different methods to get current username without using whoami
  ☆178Updated last year
• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆208Updated last year
• mandiant / msi-search
  ☆287Updated 2 years ago
• trustedsec / specula
  ☆212Updated 3 months ago
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆213Updated 8 months ago
• lolc2 / lolc2.github.io
  lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
  ☆243Updated 4 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆128Updated last year
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆153Updated last year
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆297Updated last year
• akamai / DDSpoof
  DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.
  ☆133Updated last year
• deepinstinct / NoFilter
  ☆300Updated 11 months ago
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆85Updated 3 years ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆152Updated last year
• TunnelGRE / Percino
  Evasive Golang Loader
  ☆135Updated last year
• Laokoon-SecurITy / Cortex-XDR-Config-Extractor
  Cortex XDR Config Extractor
  ☆134Updated 2 years ago
• api0cradle / RedTeamScripts
  Just some random Red Team Scripts that can be useful
  ☆154Updated last year
• skelsec / evilrdp
  ☆304Updated 6 months ago
• p0dalirius / FindUnusualSessions
  A tool to remotely detect unusual sessions opened on windows machines using RPC
  ☆116Updated 3 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆140Updated last year
• olafhartong / BamboozlEDR
  A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.
  ☆238Updated last week
• arosenmund / defcon33_silence_kill_edr
  ☆322Updated last month
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆153Updated 8 months ago
• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆247Updated 5 months ago
• yo-yo-yo-jbo / dumping_lsass
  The different ways to dump lsass
  ☆189Updated last month