Alternatives and similar repositories for SPFAbuse

Users that are interested in SPFAbuse are comparing it to the libraries listed below

• Mr-Un1k0d3r / MaliciousDLLGenerator

  View on GitHub
  DLL Generator for side loading attack
  ☆175Feb 5, 2019Updated 7 years ago
• Mr-Un1k0d3r / PoisonHandler

  View on GitHub
  lateral movement techniques that can be used during red team exercises
  ☆273Jan 13, 2020Updated 6 years ago
• Mr-Un1k0d3r / SideChannelAttack

  View on GitHub
  Side Channel script
  ☆25Mar 1, 2023Updated 2 years ago
• Mr-Un1k0d3r / Shellcoding

  View on GitHub
  Shellcoding utilities
  ☆224Dec 16, 2020Updated 5 years ago
• Mr-Un1k0d3r / RemoteProcessInjection

  View on GitHub
  C# remote process injection utility for Cobalt Strike
  ☆88Mar 9, 2020Updated 5 years ago
• Mr-Un1k0d3r / Windows-SignedBinary

  View on GitHub
  ☆259Nov 19, 2018Updated 7 years ago
• vysecurity / AzureAppC2

  View on GitHub
  A script that can be deployed to Azure App for C2 / Proxy / Redirector
  ☆41May 17, 2019Updated 6 years ago
• Mr-Un1k0d3r / MaliciousClickOnceGenerator

  View on GitHub
  Quick Malicious ClickOnceGenerator for Red Team
  ☆273Jan 27, 2021Updated 5 years ago
• boku7 / SCMKit

  View on GitHub
  Source Code Management Attack Toolkit
  ☆13Aug 1, 2022Updated 3 years ago
• Mr-Un1k0d3r / SearchIPOwner

  View on GitHub
  Search public IP owner through ARIN
  ☆60May 23, 2025Updated 8 months ago
• checkymander / Carbuncle

  View on GitHub
  Tool for interacting with outlook interop during red team engagements
  ☆146Jun 29, 2021Updated 4 years ago
• Mr-Un1k0d3r / Base64-Obfuscator

  View on GitHub
  Simple PowerShell Base64 encoder to avoid detection of your malicious payload
  ☆82Jun 5, 2018Updated 7 years ago
• matterpreter / SHAPESHIFTER

  View on GitHub
  Companion PoC for the "Adventures in Dynamic Evasion" blog post
  ☆130May 25, 2021Updated 4 years ago
• outflanknl / Excel4-DCOM

  View on GitHub
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆328Mar 26, 2019Updated 6 years ago
• Mr-Un1k0d3r / RedTeamScripts

  View on GitHub
  Repo with various Red Team scripts
  ☆147Nov 12, 2020Updated 5 years ago
• bufferbandit / silent_cleanup_uac_bypass

  View on GitHub
  Silent Cleanup UAC Bypass POC
  ☆11Dec 15, 2019Updated 6 years ago
• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆93Mar 8, 2023Updated 2 years ago
• Mr-Un1k0d3r / RedTeamCCode

  View on GitHub
  Red Team C code repo
  ☆569Dec 16, 2024Updated last year
• decoder-it / powershellveryless

  View on GitHub
  Constrained Language Mode + AMSI bypass all in one
  ☆158Jul 29, 2019Updated 6 years ago
• G0ldenGunSec / SharpTransactedLoad

  View on GitHub
  Load .net assemblies from memory while having them appear to be loaded from an on-disk location.
  ☆173May 5, 2021Updated 4 years ago
• Mr-Un1k0d3r / ThunderShell

  View on GitHub
  Python / C# Unmanaged PowerShell based RAT
  ☆771Mar 29, 2023Updated 2 years ago
• christophetd / spoofing-office-macro

  View on GitHub
  PoC of a VBA macro spawning a process with a spoofed parent and command line.
  ☆380Apr 28, 2020Updated 5 years ago
• Mr-Un1k0d3r / ADHuntTool

  View on GitHub
  official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)
  ☆232Jun 10, 2022Updated 3 years ago
• vysecurity / FSharp-Shellcode

  View on GitHub
  F# Implementation to spawn shellcode
  ☆47Jun 6, 2018Updated 7 years ago
• rvrsh3ll / CPLResourceRunner

  View on GitHub
  Run shellcode from resource
  ☆260Dec 13, 2020Updated 5 years ago
• EspressoCake / PPLDump_BOF

  View on GitHub
  A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
  ☆143Sep 24, 2021Updated 4 years ago
• Mr-Un1k0d3r / SCShell

  View on GitHub
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,594Jul 10, 2023Updated 2 years ago
• mdsecactivebreach / Browser-ExternalC2

  View on GitHub
  External C2 Using IE COM Objects
  ☆101Feb 24, 2019Updated 6 years ago
• xforcered / InlineExecute-Assembly

  View on GitHub
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆195Jul 9, 2021Updated 4 years ago
• jnqpblc / SharpSpray

  View on GitHub
  SharpSpray a simple code set to perform a password spraying attack against all users of a domain using LDAP and is compatible with Cobalt…
  ☆196Jun 30, 2019Updated 6 years ago
• OJ / clr-meterpreter

  View on GitHub
  The full story of the CLR implementation of Meterpreter
  ☆153Jul 29, 2020Updated 5 years ago
• med0x2e / NoAmci

  View on GitHub
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆218Mar 5, 2020Updated 5 years ago
• Mr-Un1k0d3r / RedTeamCSharpScripts

  View on GitHub
  C# Script used for Red Team
  ☆724Nov 16, 2021Updated 4 years ago
• 0xbadjuju / WheresMyImplant

  View on GitHub
  A Bring Your Own Land Toolkit that Doubles as a WMI Provider
  ☆289Oct 31, 2018Updated 7 years ago
• limbenjamin / LogServiceCrash

  View on GitHub
  POC code to crash Windows Event Logger Service
  ☆27Oct 16, 2020Updated 5 years ago
• leechristensen / GetNTLMChallenge

  View on GitHub
  Obtains a crackable hash for the current user account
  ☆23Feb 3, 2019Updated 7 years ago
• vysecurity / DoH-Servers

  View on GitHub
  DNS over HTTPS Servers
  ☆13Nov 19, 2018Updated 7 years ago
• infosecn1nja / ycsm

  View on GitHub
  This is a quick script installation for resilient redirector using nginx reverse proxy and letsencrypt compatible with some popular Post-…
  ☆87Jul 2, 2019Updated 6 years ago
• icebearfriend / deckbuilder

  View on GitHub
  Cobalt Strike cna script for randomized argument spoofing
  ☆51Apr 4, 2019Updated 6 years ago