Alternatives and similar repositories for Windows-Exploitation

Users that are interested in Windows-Exploitation are comparing it to the libraries listed below

• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆57Updated 3 weeks ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆110Updated 4 years ago
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆42Updated 3 years ago
• 0xNinjaCyclone / PowerLoad3r
  Malicious powershell scripts loader designed to avoid detection.
  ☆61Updated 2 years ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆46Updated 3 years ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated 2 years ago
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆133Updated 4 years ago
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆73Updated 4 years ago
• p4p1 / havoc-ligolo
  A Havoc UI tool to pivot onto a machine using ligolo-ng
  ☆50Updated 2 years ago
• amauricio / junkshell
  ☆75Updated 10 months ago
• Karmaz95 / evasion
  AV Evasion Techniques
  ☆83Updated 3 years ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆46Updated last year
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆52Updated 2 years ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆155Updated last year
• 808ale / NetRunners
  Reflective shellcode runners using obfuscated Win32 APIs in C# and C++ (GetProcAddress & GetModuleHandle). For penetration testing.
  ☆15Updated 6 months ago
• lefayjey / SharpSQLPwn
  C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
  ☆113Updated 3 years ago
• susMdT / SharpAgent
  C# havoc implant
  ☆100Updated 2 years ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆74Updated 2 years ago
• smokeme / PDFator
  ☆27Updated 2 years ago
• m8sec / CVE-2021-34527
  PrintNightmare (CVE-2021-34527) PoC Exploit
  ☆119Updated 3 years ago
• 0xHossam / APT-Attack-Simulation
  Projected developed for fun only that simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persist…
  ☆61Updated last year
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆65Updated last year
• k4sth4 / Juicy-Potato
  Windows Privilege Escalation
  ☆70Updated 3 years ago
• xct / winssh
  ☆63Updated 2 years ago
• ELMERIKH / PyinMemoryPE
  execute PE in memory Filelessly
  ☆50Updated last year
• CyberSecurityUP / Windows-API-for-Red-Team
  ☆96Updated last year
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆146Updated 2 years ago
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆39Updated last year