Alternatives and similar repositories for wintoken

Users that are interested in wintoken are comparing it to the libraries listed below

• jfjallid / go-smb
  A client library to interact with Windows RPC services such as MS-SRVS and MS-RRP.
  ☆71Updated 2 months ago
• oiweiwei / go-msrpc
  The DCE/RPC / MS-RPC Codegen/Client for Go
  ☆125Updated this week
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆127Updated last year
• Ne0nd0g / go-clr
  A PoC package for hosting the CLR and executing .NET from Go
  ☆76Updated last year
• Jhangju / goLang-injectors
  This project will guide yout to awareness of injection in almost every window API and process.
  ☆25Updated 3 years ago
• zaneGittins / go-inject
  Process injection techniques written in Go.
  ☆64Updated 2 years ago
• ropnop / go-clr
  A PoC package for hosting the CLR and executing .NET from Go
  ☆226Updated 2 years ago
• hillu / go-ntdll
  Go interface to NTDLL functions
  ☆78Updated last year
• iDigitalFlame / XMT
  eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features
  ☆100Updated 2 months ago
• neox41 / go-procinject
  Process Injection Techniques with Golang
  ☆80Updated 5 years ago
• Acebond / ReverseSocks5
  Single executable reverse SOCKS5 proxy written in Golang.
  ☆142Updated 9 months ago
• iDigitalFlame / ThunderStorm
  Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)
  ☆39Updated 3 weeks ago
• Ne0nd0g / winhttp
  A library to make HTTP requests with the Windows winhttp API
  ☆24Updated last year
• aus / proxyplease
  Cross-platform proxy selection with optional native authentication negotiation
  ☆51Updated 2 years ago
• Tylous / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆90Updated 2 years ago
• lum8rjack / caddy-c2
  Caddy v2 module to filter requests based on C2 profiles
  ☆16Updated 5 months ago
• moloch-- / sliver-py
  A Python gRPC Client Library for Sliver
  ☆75Updated 6 months ago
• Binject / universal
  Universal Shared Library User-space Loader
  ☆231Updated 3 years ago
• awgh / rawreader
  Implements io.ReaderAt over raw memory.
  ☆13Updated 5 years ago
• Ne0nd0g / go-coff
  Load and execute a common object file format (COFF) in the current process
  ☆31Updated last year
• almounah / superdeye
  Indirect Syscall with TartarusGate Approach in Go
  ☆132Updated 3 months ago
• praetorian-inc / goffloader
  A Go implementation of Cobalt Strike style BOF/COFF loaders.
  ☆236Updated 7 months ago
• f1zm0 / acheron
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆339Updated 2 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆93Updated 2 years ago
• MultSec / MultCheck
  Identifies bad bytes from static analysis with any Anti-Virus scanner.
  ☆129Updated last year
• nettitude / Tartarus-TpAllocInject
  ☆195Updated last year
• byt3bl33d3r / NimDllSideload
  DLL sideloading/proxying with Nim!
  ☆176Updated 2 years ago
• abdullah2993 / go-runpe
  execute a PE in the address space of another PE aka process hollowing
  ☆59Updated 3 years ago
• skylerknecht / messenger
  A tunneling toolkit enabling operators to move data from one place to another evasively.
  ☆71Updated this week
• D00Movenok / goMalleable
  🔎🪲 Malleable C2 profiles parser and assembler written in golang
  ☆67Updated last year