Alternatives and similar repositories for SharpShellPipe:

Users that are interested in SharpShellPipe are comparing it to the libraries listed below

• leftp / DPAPISnoop
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆133Updated 6 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆74Updated 2 years ago
• bohops / DynamicDotNet
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆141Updated 10 months ago
• CodeXTF2 / cobaltstrike-headless
  Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
  ☆147Updated 2 years ago
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆62Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆115Updated last year
• cybersectroll / SharpPersistSD
  ☆86Updated 10 months ago
• wietze / windows-dll-env-hijacking
  Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.
  ☆57Updated 2 years ago
• Wh04m1001 / DiagTrackEoP
  ☆88Updated 2 years ago
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆103Updated 2 years ago
• praetorian-inc / ADFSRelay
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆178Updated 2 years ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆100Updated 2 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆80Updated 3 years ago
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆109Updated 2 years ago
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆119Updated 2 years ago
• WKL-Sec / WMIExec
  Set of python scripts which perform different ways of command execution via WMI protocol.
  ☆159Updated last year
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• h4wkst3r / SharPersist
  Windows Persistence Toolkit in C#
  ☆36Updated 2 years ago
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆83Updated last week
• rasta-mouse / SCMUACBypass
  ☆96Updated last year
• xforcered / BOFMask
  ☆124Updated last year
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆149Updated last year
• rasta-mouse / CsWhispers
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆176Updated last year
• cube0x0 / LdapSignCheck
  Beacon Object File & C# project to check LDAP signing
  ☆188Updated 7 months ago
• trustedsec / CS_COFFLoader
  ☆127Updated last year
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆170Updated 2 years ago
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆35Updated last year
• lefayjey / SharpSQLPwn
  C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
  ☆110Updated 3 years ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago