Alternatives and similar repositories for Nimplant

Users that are interested in Nimplant are comparing it to the libraries listed below

• elddy / Nim-SMBExec
  SMBExec implementation in Nim - SMBv2 using NTLM Authentication with Pass-The-Hash technique
  ☆90Updated 2 years ago
• ajpc500 / NimlineWhispers
  A very proof-of-concept port of InlineWhispers for using syscalls in Nim projects.
  ☆166Updated 3 years ago
• HuskyHacks / ShadowSteal
  Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
  ☆211Updated 3 years ago
• ajpc500 / NimExamples
  A collection of offensive Nim example code
  ☆75Updated 3 years ago
• d4rckh / grc2
  grim reaper c2
  ☆338Updated 2 years ago
• frkngksl / NiCOFF
  COFF and BOF Loader written in Nim
  ☆174Updated 2 years ago
• moloch-- / denim
  Automated compiler obfuscation for nim
  ☆139Updated 3 years ago
• Mr-Un1k0d3r / ADHuntTool
  official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)
  ☆233Updated 3 years ago
• Cerbersec / DomainBorrowingC2
  ☆169Updated 4 years ago
• outflanknl / FindObjects-BOF
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆272Updated 2 years ago
• RedSiege / CIMplant
  C# port of WMImplant which uses either CIM or WMI to query remote systems
  ☆201Updated 4 years ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆307Updated 3 years ago
• byt3bl33d3r / pyMalleableC2
  Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
  ☆279Updated 8 months ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆302Updated last year
• lexfo / rpc2socks
  Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.
  ☆189Updated 4 years ago
• fox-it / LDAPFragger
  ☆193Updated 5 years ago
• ajpc500 / NimlineWhispers2
  A tool for converting SysWhispers2 syscalls for use with Nim projects
  ☆121Updated 3 years ago
• rxwx / spoolsystem
  Print Spooler Named Pipe Impersonation for Cobalt Strike
  ☆263Updated 5 years ago
• jfmaes / SharpZipRunner
  Executes position independent shellcode from an encrypted zip
  ☆304Updated 4 years ago
• whydee86 / SnD_AMSI
  Start new PowerShell without etw and amsi in pure nim
  ☆156Updated 3 years ago
• outflanknl / WdToggle
  A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
  ☆219Updated 2 years ago
• Flangvik / DeployPrinterNightmare
  C# tool for installing a shared network printer abusing the PrinterNightmare bug to allow other network machines easy privesc!
  ☆185Updated 3 years ago
• shantanu561993 / SharpChisel
  C# Wrapper around Chisel from https://github.com/jpillora/chisel
  ☆158Updated 2 years ago
• anthemtotheego / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆218Updated 4 years ago
• S3cur3Th1sSh1t / NimGetSyscallStub
  Get fresh Syscalls from a fresh ntdll.dll copy
  ☆231Updated 3 years ago
• bats3c / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆262Updated 4 years ago
• optiv / Dent
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆297Updated last year
• rvrsh3ll / Rubeus-Rundll32
  Run Rubeus via Rundll32
  ☆202Updated 5 years ago
• t3hbb / NSGenCS
  Extendable payload obfuscation and delivery framework
  ☆144Updated 2 years ago
• riskydissonance / SafetyDump
  Dump stuff without touching disk
  ☆164Updated 4 years ago