Alternatives and similar repositories for Babuska-Dolls

Users that are interested in Babuska-Dolls are comparing it to the libraries listed below

• 3gstudent / Bypass-Windows-AppLocker
  ☆55Updated 8 years ago
• 3gstudent / bitsadminexec
  Use bitsadmin to maintain persistence and bypass Autoruns
  ☆66Updated 8 years ago
• roo7cause / Ps1jacker
  Ps1jacker is a tool for generating COM Hijacking payload.
  ☆60Updated 8 months ago
• sekirkity / SeeCLRly
  Fileless SQL Server CLR-based Custom Stored Procedure Command Execution
  ☆36Updated 8 years ago
• curtbraz / Invoke-NeutralizeAV
  Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting
  ☆41Updated 6 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆47Updated 8 years ago
• maaaaz / mimicertz
  A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates
  ☆24Updated 7 years ago
• jaredhaight / ReflectCmd
  A simple reflective dll example
  ☆19Updated 8 years ago
• dzonerzy / winescalation
  Python based module to find common vulnerabilities which lead to Windows privilege escalation
  ☆30Updated 9 years ago
• stufus / parse-mimikatz-log
  A relatively flexible tool to parse mimikatz output
  ☆35Updated 9 years ago
• Cn33liz / p0shKiller
  ☆64Updated 9 years ago
• Cn33liz / p0wnedLoader
  ☆78Updated 7 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 7 years ago
• vletoux / ms17-010-Scanner
  ☆58Updated 8 years ago
• V1V1 / Sleight
  Empire HTTP(S) C2 redirector setup script
  ☆48Updated 7 years ago
• chango77747 / ReverseShell
  Simple C# reverse shell with shellcode and process injection
  ☆39Updated 9 years ago
• rivet1337 / CS-KickassBot
  A sample bot for Cobalt Strike 3
  ☆22Updated 9 years ago
• Cn33liz / SmashedPotato
  ☆83Updated 9 years ago
• DamonMohammadbagher / NativePayload_ICMP
  C# code for Transferring Backdoor Payloads by ICMPv4 Traffic and bypassing Anti-Viruses
  ☆29Updated 2 years ago
• 001SPARTaN / csfm
  Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.
  ☆65Updated 7 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆59Updated 6 years ago
• woanware / application-restriction-bypasses
  A set of compiled application restriction bypasses
  ☆30Updated 8 years ago
• 0xbadjuju / Sharpire
  A C# implementation of the PowerShell Empire Agent
  ☆73Updated 6 years ago
• NotGlop / SysExec
  [Windows] Local Privilege Escalation - WebClient
  ☆58Updated 8 years ago
• tyranid / DotNetInteropDemos
  A set of demos and a PowerShell module to interact with DotNetInterop.
  ☆68Updated 7 years ago
• 3gstudent / Eventlogedit-evt--General
  Remove individual lines from Windows Event Viewer Log (EVT) files
  ☆44Updated 4 years ago
• Cn33liz / MS17-012
  MS17-012 - COM Session Moniker EoP Exploit running within MSBuild.exe
  ☆60Updated 8 years ago
• killswitch-GUI / Persistence-Survivability
  Powershell Persistence Locator
  ☆66Updated 9 years ago
• trustedsec / auto_SettingContent-ms
  This is a quick POC for using the Matt Nelson (enigma0x3) technique for generating a malicious .SettingContent-ms extension type for remo…
  ☆54Updated 7 years ago
• Truneski / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆63Updated 6 years ago