Alternatives and similar repositories for Koh

Users that are interested in Koh are comparing it to the libraries listed below

• outflanknl / PrintNightmare
  ☆345Updated 4 years ago
• post-cyberlabs / Offensive_tools
  ☆413Updated 2 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆386Updated 3 years ago
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆579Updated 2 years ago
• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆571Updated last year
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆287Updated 5 years ago
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆421Updated 3 years ago
• ps1337 / reinschauer
  it is very good
  ☆516Updated 3 years ago
• dosxuz / DefenderStop
  Stop Defender Service using C# via Token Impersonation
  ☆170Updated 4 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆747Updated 2 years ago
• Accenture / Codecepticon
  .NET/PowerShell/VBA Offensive Security Obfuscator
  ☆514Updated 2 years ago
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆496Updated last year
• CCob / Volumiser
  ☆423Updated 9 months ago
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆481Updated 3 years ago
• Tylous / ZipExec
  A unique technique to execute binaries from a password protected zip
  ☆1,039Updated 3 years ago
• r4wd3r / Suborner
  ☆473Updated last year
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆431Updated 3 years ago
• klezVirus / vortex
  VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
  ☆448Updated 2 years ago
• med0x2e / NTLMRelay2Self
  An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
  ☆417Updated 2 years ago
• xforcered / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆430Updated 3 years ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆598Updated 3 years ago
• d3lb3 / KeeFarceReborn
  A standalone DLL that exports databases in cleartext once injected in the KeePass process.
  ☆302Updated 2 years ago
• netero1010 / ServiceMove-BOF
  New lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking code execution.
  ☆301Updated 3 years ago
• bohops / SharpRDPHijack
  A proof-of-concept Remote Desktop (RDP) session hijack utility
  ☆498Updated last year
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆358Updated 3 years ago
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆460Updated last year
• Tw1sm / RITM
  Roast in the Middle
  ☆296Updated 4 months ago
• VirtualAlllocEx / Create-Thread-Shellcode-Fetcher
  This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and down…
  ☆256Updated 2 years ago
• ZeroMemoryEx / Amsi-Killer
  Lifetime AMSI bypass
  ☆669Updated 2 years ago
• gh0x0st / Invoke-PSObfuscation
  An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.
  ☆283Updated 3 years ago