Alternatives and similar repositories for CertifyKit

Users that are interested in CertifyKit are comparing it to the libraries listed below

• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆97Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆117Updated last year
• Hagrid29 / DumpAADSyncCreds
  C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…
  ☆41Updated 2 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆50Updated 2 months ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆88Updated 2 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆85Updated 3 years ago
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆54Updated 6 months ago
• xforcered / BOFMask
  ☆127Updated 2 years ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆78Updated 2 years ago
• NVISOsecurity / cs2br-bof
  Run Cobalt Strike BOFs in Brute Ratel C4!
  ☆68Updated 2 months ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆22Updated 2 years ago
• waawaa / AMSI_Rubeus_bypass
  ☆70Updated 2 years ago
• realstatus / CVE-2024-40711-Exp
  CVE-2024-40711-exp
  ☆42Updated 8 months ago
• OG-Sadpanda / SharpSword
  Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly
  ☆117Updated 9 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆49Updated 5 months ago
• Octoberfest7 / CS_Uploads_Tracker
  Aggressor script add-in for CobaltStrike to track file uploads
  ☆36Updated 2 years ago
• Leo4j / SessionExec
  Execute commands in other Sessions
  ☆90Updated 11 months ago
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆62Updated last year
• h4wkst3r / SharPersist
  Windows Persistence Toolkit in C#
  ☆36Updated 2 years ago
• c3r3br4t3 / ShadowRDP
  ☆71Updated last year
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆56Updated 3 years ago
• SlimeOnSecurity / PrintSpoofer-BOF
  ☆44Updated 2 months ago
• dru1d-foofus / GetLAPSPassword
  A LAPS dumper written using the impacket library.
  ☆31Updated 2 years ago
• brett-fitz / pyMalleableProfileParser
  Parses Cobalt Strike malleable C2 profiles.
  ☆58Updated 3 weeks ago
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆39Updated last year
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆84Updated 2 years ago
• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆56Updated 2 years ago
• vysecurity / msmailprobe2
  Office 365 and Exchange Enumeration Version 2
  ☆18Updated last year
• cybersectroll / SharpPersistSD
  ☆90Updated last year
• rasta-mouse / SpawnWith
  ☆107Updated 4 months ago