Alternatives and similar repositories for Koh

Users that are interested in Koh are comparing it to the libraries listed below

• post-cyberlabs / Offensive_tools
  ☆412Updated last year
• outflanknl / PrintNightmare
  ☆344Updated 4 years ago
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆473Updated 3 years ago
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆574Updated 2 years ago
• CCob / Volumiser
  ☆416Updated 6 months ago
• r4wd3r / Suborner
  ☆471Updated 11 months ago
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆419Updated 3 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆386Updated 3 years ago
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆429Updated 3 years ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆573Updated 3 years ago
• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆568Updated last year
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆748Updated 2 years ago
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆284Updated 4 years ago
• dosxuz / DefenderStop
  Stop Defender Service using C# via Token Impersonation
  ☆170Updated 3 years ago
• cube0x0 / KrbRelay
  Framework for Kerberos relaying
  ☆931Updated 3 years ago
• Accenture / Codecepticon
  .NET/PowerShell/VBA Offensive Security Obfuscator
  ☆507Updated last year
• ps1337 / reinschauer
  it is very good
  ☆517Updated 2 years ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆368Updated 5 years ago
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆491Updated last year
• mgeeky / Stracciatella
  OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…
  ☆537Updated 3 years ago
• d3lb3 / KeeFarceReborn
  A standalone DLL that exports databases in cleartext once injected in the KeePass process.
  ☆298Updated 2 years ago
• GoSecure / pywsus
  Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.
  ☆325Updated 2 years ago
• bats3c / ADCSPwn
  A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…
  ☆859Updated 2 years ago
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆567Updated 9 months ago
• zblurx / certsync
  Dump NTDS with golden certificates and UnPAC the hash
  ☆641Updated last year
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆460Updated last year
• Tylous / ZipExec
  A unique technique to execute binaries from a password protected zip
  ☆1,031Updated 3 years ago
• bohops / SharpRDPHijack
  A proof-of-concept Remote Desktop (RDP) session hijack utility
  ☆491Updated 11 months ago
• ZeroMemoryEx / Amsi-Killer
  Lifetime AMSI bypass
  ☆658Updated 2 years ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆491Updated 2 years ago