Alternatives and similar repositories for xorInject

Users that are interested in xorInject are comparing it to the libraries listed below

• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆77Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated 4 months ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆57Updated last year
• nickvourd / Rocabella
  Sniffing files generator
  ☆60Updated 11 months ago
• rasta-mouse / SpawnWith
  ☆109Updated 11 months ago
• eversinc33 / Invoke-Pre2kSpray
  Enumerate domain machine accounts and perform pre2k password spraying.
  ☆69Updated 2 years ago
• HulkOperator / AuthStager
  ☆59Updated last year
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆97Updated last year
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆94Updated last year
• ghost-ng / slinger
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆57Updated 3 weeks ago
• p4p1 / havoc-reporter
  A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.
  ☆14Updated 2 years ago
• 0xb11a1 / sliver_extension_uac_bypass_cmstp
  Sliver extension to bypass UAC via cmstp written in rust
  ☆35Updated last year
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆89Updated 11 months ago
• nickzer0 / RagingRotator
  A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.
  ☆80Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆74Updated 2 years ago
• MythicAgents / sliver
  Sliver agents for Mythic
  ☆48Updated last year
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• 0xthirteen / reg_snake
  Python tool to interact with WMI StdRegProv
  ☆60Updated last year
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆32Updated last year
• dmcxblue / PyObscura
  A python script that automates a C2 Profile build
  ☆48Updated last month
• 7hePr0fess0r / ADCSDevilCOM
  A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …
  ☆163Updated 3 months ago
• secorizon / MSFinger
  Microsoft Network Service Fingerprinting Tool
  ☆65Updated last month
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆45Updated 10 months ago
• ThanniKudam / TopazTerminator
  Just another EDR killer
  ☆88Updated 2 weeks ago
• kapellos / LNKSmuggler
  A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
  ☆92Updated last year
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆32Updated last year
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆51Updated 2 years ago
• nettitude / TokenCert
  TokenCert
  ☆102Updated last year