HullaBrian/COMmander external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

HullaBrian/COMmander

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/HullaBrian/COMmander)

Close

HullaBrian / COMmanderView on GitHubMore

• External links
• Readme badge

.NET tool used to enrich RPC telemetry

☆102Jan 24, 2026Updated 3 months ago

Alternatives and similar repositories for COMmander

Users that are interested in COMmander are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• mannyfred / MentalTi

  View on GitHub
  Mentally ill EtwTi parser
  ☆72Jan 11, 2026Updated 4 months ago
• ricardojoserf / SharpObfuscate

  View on GitHub
  Obfuscate payloads using IPv4, IPv6, MAC or UUID strings
  ☆24Feb 17, 2024Updated 2 years ago
• boku7 / patchwerk

  View on GitHub
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆197Feb 6, 2025Updated last year
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆385Dec 13, 2024Updated last year
• outflanknl / edr-internals

  View on GitHub
  Tools for analyzing EDR agents
  ☆278Jun 10, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Mayyhem / Maestro

  View on GitHub
  Abusing Azure services over C2
  ☆372Jan 20, 2026Updated 4 months ago
• decoder-it / RelabelAbuse

  View on GitHub
  ☆63May 31, 2024Updated last year
• synacktiv / GroupPolicyBackdoor

  View on GitHub
  Group Policy Objects manipulation and exploitation framework
  ☆305Dec 7, 2025Updated 5 months ago
• NetSPI / BOF-PE

  View on GitHub
  An example reference design for a proposed BOF PE
  ☆206Jan 23, 2026Updated 3 months ago
• ricardojoserf / TrickDump

  View on GitHub
  Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
  ☆555May 9, 2025Updated last year
• kleiton0x00 / Proxy-DLL-Loads

  View on GitHub
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆412Jan 11, 2026Updated 4 months ago
• OtterHacker / OktaGinx

  View on GitHub
  ☆60Jun 2, 2025Updated 11 months ago
• 3lp4tr0n / RemoteMonologue

  View on GitHub
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆210Nov 4, 2025Updated 6 months ago
• trustedsec / Titanis

  View on GitHub
  Windows protocol library, including SMB and RPC implementations, among others.
  ☆783Apr 14, 2026Updated last month
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• quarkslab / proxyblob

  View on GitHub
  SOCKS5 proxy tool that uses Azure Storage services as a means of communication.
  ☆350Mar 21, 2026Updated last month
• 0xv1n / RemoteSessionEnum

  View on GitHub
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆118Aug 21, 2024Updated last year
• RedTeamPentesting / keycred

  View on GitHub
  Generate and Manage KeyCredentialLinks
  ☆256Mar 9, 2026Updated 2 months ago
• dmcxblue / Claude-C2

  View on GitHub
  Utilizng an MCP Server to communicate with your C2
  ☆92May 15, 2025Updated last year
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆151Feb 10, 2025Updated last year
• 0xsp-SRD / MDE_Enum

  View on GitHub
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆210Jun 10, 2024Updated last year
• Leo4j / Invoke-SessionHunter

  View on GitHub
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆208Aug 12, 2024Updated last year
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆133Jan 23, 2025Updated last year
• TheManticoreProject / Delegations

  View on GitHub
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆217Apr 17, 2026Updated last month
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Maldev-Academy / Alphabetfuscation

  View on GitHub
  Convert your shellcode into an ASCII string
  ☆129Jun 27, 2025Updated 10 months ago
• jdu2600 / CFG-FindHiddenShellcode

  View on GitHub
  Walks the CFG bitmap to find previously executable but currently hidden shellcode regions
  ☆134May 17, 2023Updated 3 years ago
• rtecCyberSec / BitlockMove

  View on GitHub
  Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
  ☆444Jun 27, 2025Updated 10 months ago
• AlteredSecurity / Disable-TamperProtection

  View on GitHub
  A POC to disable TamperProtection and other Defender / MDE components
  ☆257Jun 6, 2024Updated last year
• warpnet / MS-RPC-Fuzzer

  View on GitHub
  Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By f…
  ☆337May 4, 2026Updated 2 weeks ago
• praetorian-inc / Matryoshka

  View on GitHub
  Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.
  ☆43May 24, 2021Updated 4 years ago
• andreisss / Ghosting-AMSI

  View on GitHub
  Ghosting-AMSI
  ☆236Apr 24, 2025Updated last year
• MultSec / MultCheck

  View on GitHub
  Identifies bad bytes from static analysis with any Anti-Virus scanner.
  ☆129Jul 5, 2024Updated last year
• 0xJs / EnumEDRs

  View on GitHub
  Enumerate active EDR's on the system
  ☆154Sep 23, 2025Updated 7 months ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• hasherezade / waiting_thread_hijacking

  View on GitHub
  Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread
  ☆264Aug 31, 2025Updated 8 months ago
• paskalian / WID_LoadLibrary

  View on GitHub
  Reverse engineering winapi function loadlibrary.
  ☆242Apr 17, 2023Updated 3 years ago
• 0xTriboulet / rssh-rs

  View on GitHub
  ☆54May 31, 2025Updated 11 months ago
• jdu2600 / EtwTi-FluctuationMonitor

  View on GitHub
  Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections
  ☆176May 17, 2023Updated 3 years ago
• RootUp / SmuggleShield

  View on GitHub
  Protection against HTML smuggling attacks.
  ☆102Jul 10, 2025Updated 10 months ago
• ColeHouston / Sunder

  View on GitHub
  Windows rootkit designed to work with BYOVD exploits
  ☆221Jan 18, 2025Updated last year
• MEhrn00 / boflink

  View on GitHub
  Linker for Beacon Object Files
  ☆181Mar 30, 2026Updated last month