Alternatives and similar repositories for Koh

Users that are interested in Koh are comparing it to the libraries listed below

• outflanknl / PrintNightmare
  ☆344Updated 4 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆747Updated 2 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆385Updated 3 years ago
• post-cyberlabs / Offensive_tools
  ☆413Updated last year
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆474Updated 2 years ago
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆572Updated 2 years ago
• dosxuz / DefenderStop
  Stop Defender Service using C# via Token Impersonation
  ☆170Updated 3 years ago
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆486Updated last year
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆420Updated 3 years ago
• Accenture / Codecepticon
  .NET/PowerShell/VBA Offensive Security Obfuscator
  ☆506Updated last year
• ZeroMemoryEx / Amsi-Killer
  Lifetime AMSI bypass
  ☆644Updated last year
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆571Updated 3 years ago
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆357Updated 2 years ago
• Tylous / ZipExec
  A unique technique to execute binaries from a password protected zip
  ☆1,033Updated 3 years ago
• mgeeky / PackMyPayload
  A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…
  ☆1,010Updated last year
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆561Updated 7 months ago
• ps1337 / reinschauer
  it is very good
  ☆518Updated 2 years ago
• boh / RedCsharp
  Collection of C# projects. Useful for pentesting and redteaming.
  ☆316Updated last year
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆568Updated last year
• r4wd3r / Suborner
  ☆469Updated 10 months ago
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆462Updated last year
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆367Updated 4 years ago
• bohops / SharpRDPHijack
  A proof-of-concept Remote Desktop (RDP) session hijack utility
  ☆492Updated 9 months ago
• med0x2e / NTLMRelay2Self
  An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
  ☆415Updated last year
• Unknow101 / FuckThatPacker
  A simple python packer to easily bypass Windows Defender
  ☆645Updated 3 years ago
• CCob / Volumiser
  ☆391Updated 4 months ago
• d3lb3 / KeeFarceReborn
  A standalone DLL that exports databases in cleartext once injected in the KeePass process.
  ☆299Updated 2 years ago
• sinfulz / JustEvadeBro
  JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
  ☆309Updated last year
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆281Updated 4 years ago