Alternatives and similar repositories for LOLBins

Users that are interested in LOLBins are comparing it to the libraries listed below

• hyp3rlinx / DarkFinger-C2
  Windows TCPIP Finger Command / C2 Channel and Bypassing Security Software
  ☆67Updated last year
• xRET2pwn / PickleC2
  PickleC2 is a post-exploitation and lateral movements framework
  ☆96Updated 3 years ago
• thiagomayllart / Harvis
  Harvis is designed to automate your C2 Infrastructure.
  ☆108Updated 2 years ago
• YossiSassi / Get-NetSessionEnum
  Automate Network sessions enumeration of connected users in the domain, to facilitate AD Reconnaissance for Adversary simulation & Red Te…
  ☆15Updated 4 years ago
• 3xpl01tc0d3r / Building-ActiveDirectory-Lab
  Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.
  ☆37Updated 5 years ago
• tokyoneon / Invoke-SocksProxy
  Invoke-SocksProxy is a PowerShell script designed to create reverse proxies.
  ☆49Updated 4 years ago
• mobdk / WinBoost
  Execute Mimikatz with different technique
  ☆51Updated 3 years ago
• cheshireca7 / smbAutoRelay
  SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…
  ☆47Updated 4 years ago
• d3adzo / shepard
  In progress persistent download/upload/execution tool using Windows BITS.
  ☆43Updated 3 years ago
• RickGeex / ProxyLogon
  ProxyLogon is the formally generic name for CVE-2021-26855, a vulnerability on Microsoft Exchange Server that allows an attacker bypassin…
  ☆31Updated 4 years ago
• SpiderMate / Jatayu
  Stealthy Stand Alone PHP Web Shell
  ☆33Updated 5 years ago
• scriptchildie / MaliciousVBA
  Reverse shell macro using Word VBA
  ☆14Updated 4 years ago
• password-reset / TrelloC2
  Simple C2 over the Trello API
  ☆38Updated 2 years ago
• chryzsh / JenkinsPasswordSpray
  A tool to password spray Jenkins instances
  ☆57Updated 6 years ago
• ahmedkhlief / muddyc3-Revived
  ☆38Updated 5 years ago
• tmenochet / ADThief
  Post-exploitation tool for attacking Active Directory domain controllers
  ☆18Updated 2 years ago
• tothi / CVE-2021-1675
  C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527
  ☆29Updated 3 years ago
• ZephrFish / Exch-CVE-2021-26855
  CVE-2021-26855: PoC (Not a HoneyPoC for once!)
  ☆27Updated 2 months ago
• ly4k / Pypykatz
  Modified version of Pypykatz to print encrypted credentials
  ☆51Updated 2 years ago
• snovvcrash / OffensivePipeline
  OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
  ☆91Updated 3 years ago
• BC-SECURITY / SocksProxyServer-Plugin
  Socks Proxy Server Plugin for Invoke-SocksProxy
  ☆17Updated 3 months ago
• ninhpn1337 / Disable-Windows-Defender
  Disable Windows Defender All Version
  ☆31Updated 4 years ago
• RiccardoAncarani / talks
  ☆41Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 3 years ago
• wsummerhill / Malware_Weaponization
  A curated list of tools and techniques written from experience in weaponization of malware
  ☆36Updated last year
• foofus-sph1nx / PyMailSniper
  Python port of MailSniper to exfiltrate emails via EWS endpoint
  ☆88Updated 3 years ago
• 1d8 / macros
  ☆50Updated 4 years ago
• decoder-it / juicy_2
  juicypotato for win10 > 1803 & win server 2019
  ☆97Updated 4 years ago
• warferik / CVE-2019-3980
  ☆18Updated 4 years ago
• djhohnstein / TSMSISrv_poc
  C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll
  ☆58Updated 6 years ago