Alternatives and similar repositories for LolDriverScan

Users that are interested in LolDriverScan are comparing it to the libraries listed below

• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆184Updated last year
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆162Updated last month
• trustedsec / specula
  ☆191Updated 8 months ago
• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆205Updated last year
• CCob / DRSAT
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆237Updated 5 months ago
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆209Updated 8 months ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆306Updated 6 months ago
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆200Updated 3 months ago
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆166Updated 7 months ago
• ricardojoserf / WhoamiAlternatives
  Different methods to get current username without using whoami
  ☆176Updated last year
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆147Updated last year
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆231Updated 2 weeks ago
• mandiant / msi-search
  ☆277Updated last year
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆206Updated 4 months ago
• akamai / DDSpoof
  DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.
  ☆126Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆200Updated 11 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆154Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆170Updated 2 weeks ago
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆270Updated last year
• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆174Updated last month
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆114Updated 2 years ago
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆167Updated 2 months ago
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆160Updated this week
• floesen / EventLogCrasher
  ☆188Updated last year
• lolc2 / lolc2.github.io
  lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
  ☆213Updated this week
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆211Updated 2 weeks ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆89Updated last year
• ad0nis / ntlm_relay_gat
  ☆158Updated last year
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆190Updated 3 weeks ago
• deepinstinct / NoFilter
  ☆299Updated 7 months ago