Alternatives and similar repositories for Koh

Users that are interested in Koh are comparing it to the libraries listed below

• NUL0x4C / TerraLdr
  A Payload Loader Designed With Advanced Evasion Features
  ☆512Updated 2 years ago
• mgeeky / PackMyPayload
  A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…
  ☆915Updated 11 months ago
• post-cyberlabs / Offensive_tools
  ☆408Updated last year
• outflanknl / PrintNightmare
  ☆338Updated 3 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆743Updated last year
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆563Updated 2 years ago
• klezVirus / vortex
  VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
  ☆433Updated last year
• MythicAgents / Apollo
  A .NET Framework 4.0 Windows Agent
  ☆473Updated 2 weeks ago
• ZeroMemoryEx / Amsi-Killer
  Lifetime AMSI bypass
  ☆626Updated last year
• dosxuz / DefenderStop
  Stop Defender Service using C# via Token Impersonation
  ☆171Updated 3 years ago
• Idov31 / Sandman
  Sandman is a NTP based backdoor for red team engagements in hardened networks.
  ☆788Updated last year
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆460Updated 2 years ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆543Updated 2 years ago
• knavesec / Max
  Maximizing BloodHound. Max is a good boy.
  ☆515Updated 2 weeks ago
• Wra7h / FlavorTown
  Various ways to execute shellcode
  ☆490Updated last year
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆382Updated 3 years ago
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆415Updated 2 years ago
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆275Updated 4 years ago
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆475Updated 10 months ago
• cube0x0 / KrbRelay
  Framework for Kerberos relaying
  ☆910Updated 2 years ago
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆522Updated 3 months ago
• GoSecure / pywsus
  Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.
  ☆305Updated 2 years ago
• Flangvik / BetterSafetyKatz
  Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…
  ☆862Updated 4 years ago
• bats3c / ADCSPwn
  A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…
  ☆841Updated 2 years ago
• mgeeky / ProtectMyTooling
  Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts wa…
  ☆950Updated 5 months ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆360Updated 4 years ago
• zblurx / certsync
  Dump NTDS with golden certificates and UnPAC the hash
  ☆633Updated last year
• boh / RedCsharp
  Collection of C# projects. Useful for pentesting and redteaming.
  ☆305Updated last year
• FatRodzianko / SharpBypassUAC
  C# tool for UAC bypasses
  ☆430Updated 3 years ago
• mgeeky / Stracciatella
  OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…
  ☆523Updated 2 years ago