LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. This project gathers procedural examples from public reports of adversarial activities targeting ESXi hosts
☆151May 3, 2026Updated 3 weeks ago
Alternatives and similar repositories for LOLESXi
Users that are interested in LOLESXi are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆91Jul 18, 2023Updated 2 years ago
- Mapping of open-source detection rules and atomic tests.☆211Feb 16, 2026Updated 3 months ago
- Living Off The Land Drivers☆1,637Updated this week
- Living Off Security Tools☆61Nov 23, 2025Updated 6 months ago
- ☆14Mar 19, 2024Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- TokenCert☆103Nov 15, 2024Updated last year
- Repository of Microsoft Driver Block Lists based off of OS-builds☆46Apr 14, 2024Updated 2 years ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆365Dec 13, 2025Updated 5 months ago
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆200Nov 5, 2025Updated 6 months ago
- Scripts to interact with Microsoft Graph APIs☆45Nov 7, 2024Updated last year
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆54Oct 23, 2024Updated last year
- A BOF to enumerate system process, their protection levels, and more.☆126Nov 27, 2024Updated last year
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆22Sep 30, 2022Updated 3 years ago
- ☆260Jun 7, 2025Updated 11 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Protect your Domain Controllers by auditing and restricting LDAP requests☆189May 29, 2025Updated 11 months ago
- Smart Card PIN swiping DLL☆79Oct 4, 2020Updated 5 years ago
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆324Apr 22, 2026Updated last month
- FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is de…☆822Apr 18, 2026Updated last month
- a tiny program to consume from ETW providers for research☆55Jan 4, 2025Updated last year
- ☆16May 3, 2024Updated 2 years ago
- Tool designed to exfiltrate OneDrive Business OCR Data☆127Jan 27, 2025Updated last year
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆326Oct 12, 2025Updated 7 months ago
- ☆65Mar 15, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- yaa - yaml search for humans☆12Dec 8, 2025Updated 5 months ago
- ☆19Dec 18, 2024Updated last year
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆385Dec 13, 2024Updated last year
- .NET deserialization hunter☆91Jul 21, 2024Updated last year
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆260Nov 24, 2023Updated 2 years ago
- LotL RMM☆352Updated this week
- PowerShell tools to help defenders hunt smarter, hunt harder.☆483Oct 29, 2025Updated 6 months ago
- ☆293Jul 20, 2023Updated 2 years ago
- A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.☆213Feb 7, 2026Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Aims to identify sleeping beacons☆670Jan 25, 2026Updated 4 months ago
- ☆63May 31, 2024Updated last year
- Search an entire directory of .eml email files for a word or phrase... in over 100 languages.☆12Feb 28, 2023Updated 3 years ago
- ☆236Jun 10, 2025Updated 11 months ago
- Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.☆504Jan 23, 2023Updated 3 years ago
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆3,169Updated this week
- Find world writable directories that contain a .exe or .dll file☆13Aug 31, 2021Updated 4 years ago