Alternatives and similar repositories for Koh

Users that are interested in Koh are comparing it to the libraries listed below

• NUL0x4C / TerraLdr
  A Payload Loader Designed With Advanced Evasion Features
  ☆510Updated 2 years ago
• outflanknl / PrintNightmare
  ☆342Updated 3 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆384Updated 3 years ago
• post-cyberlabs / Offensive_tools
  ☆409Updated last year
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆469Updated 2 years ago
• ZeroMemoryEx / Amsi-Killer
  Lifetime AMSI bypass
  ☆635Updated last year
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆416Updated 3 years ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆558Updated 2 years ago
• boh / RedCsharp
  Collection of C# projects. Useful for pentesting and redteaming.
  ☆310Updated last year
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆568Updated 2 years ago
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• med0x2e / NTLMRelay2Self
  An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
  ☆406Updated last year
• dosxuz / DefenderStop
  Stop Defender Service using C# via Token Impersonation
  ☆170Updated 3 years ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆366Updated 4 years ago
• r4wd3r / Suborner
  ☆469Updated 8 months ago
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆279Updated 4 years ago
• bohops / SharpRDPHijack
  A proof-of-concept Remote Desktop (RDP) session hijack utility
  ☆486Updated 7 months ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆745Updated last year
• Accenture / Codecepticon
  .NET/PowerShell/VBA Offensive Security Obfuscator
  ☆505Updated last year
• d3lb3 / KeeFarceReborn
  A standalone DLL that exports databases in cleartext once injected in the KeePass process.
  ☆298Updated 2 years ago
• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆564Updated last year
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆457Updated last year
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆480Updated last year
• VirtualAlllocEx / Create-Thread-Shellcode-Fetcher
  This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and down…
  ☆250Updated 2 years ago
• CCob / Volumiser
  ☆386Updated 2 months ago
• RiccardoAncarani / LiquidSnake
  LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript
  ☆339Updated 3 years ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆489Updated 2 years ago
• cube0x0 / SharpSystemTriggers
  Collection of remote authentication triggers in C#
  ☆496Updated last year
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆549Updated 5 months ago
• plackyhacker / Shellcode-Injection-Techniques
  A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this proje…
  ☆460Updated 3 years ago