Alternatives and similar repositories for Koh

Users that are interested in Koh are comparing it to the libraries listed below

• post-cyberlabs / Offensive_tools
  ☆413Updated last year
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆386Updated 3 years ago
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆571Updated 2 years ago
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆566Updated 3 years ago
• outflanknl / PrintNightmare
  ☆344Updated 3 years ago
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆418Updated 3 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆747Updated 2 years ago
• Tylous / ZipExec
  A unique technique to execute binaries from a password protected zip
  ☆1,032Updated 3 years ago
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆484Updated last year
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆474Updated 2 years ago
• CCob / Volumiser
  ☆390Updated 4 months ago
• dosxuz / DefenderStop
  Stop Defender Service using C# via Token Impersonation
  ☆170Updated 3 years ago
• Accenture / Codecepticon
  .NET/PowerShell/VBA Offensive Security Obfuscator
  ☆506Updated last year
• ZeroMemoryEx / Amsi-Killer
  Lifetime AMSI bypass
  ☆641Updated last year
• r4wd3r / Suborner
  ☆470Updated 9 months ago
• bohops / SharpRDPHijack
  A proof-of-concept Remote Desktop (RDP) session hijack utility
  ☆491Updated 9 months ago
• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆569Updated last year
• xforcered / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆429Updated 3 years ago
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆280Updated 4 years ago
• klezVirus / chameleon
  PowerShell Script Obfuscator
  ☆565Updated last year
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆557Updated 7 months ago
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆419Updated 11 months ago
• boh / RedCsharp
  Collection of C# projects. Useful for pentesting and redteaming.
  ☆313Updated last year
• d3lb3 / KeeFarceReborn
  A standalone DLL that exports databases in cleartext once injected in the KeePass process.
  ☆299Updated 2 years ago
• med0x2e / NTLMRelay2Self
  An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
  ☆414Updated last year
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆257Updated 3 years ago
• juliourena / SharpNoPSExec
  Get file less command execution for lateral movement.
  ☆627Updated 3 years ago
• bats3c / ADCSPwn
  A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…
  ☆858Updated 2 years ago
• plackyhacker / Shellcode-Injection-Techniques
  A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this proje…
  ☆459Updated 3 years ago