Alternatives and similar repositories for SharpShellPipe:

Users that are interested in SharpShellPipe are comparing it to the libraries listed below

• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆54Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆80Updated last year
• lefayjey / SharpSQLPwn
  C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
  ☆108Updated 2 years ago
• Wh04m1001 / DiagTrackEoP
  ☆89Updated 2 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆79Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆96Updated last year
• leftp / DPAPISnoop
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆132Updated 4 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆71Updated last year
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆58Updated last year
• cybersectroll / SharpPersistSD
  ☆85Updated 8 months ago
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆105Updated last year
• bohops / DynamicDotNet
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆139Updated 8 months ago
• WKL-Sec / WMIExec
  Set of python scripts which perform different ways of command execution via WMI protocol.
  ☆161Updated last year
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆77Updated last year
• rasta-mouse / CsWhispers
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆173Updated 10 months ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• CodeXTF2 / cobaltstrike-headless
  Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
  ☆147Updated 2 years ago
• praetorian-inc / ADFSRelay
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆174Updated 2 years ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆78Updated 2 years ago
• eversinc33 / Godmode
  Tool for playing with Windows Access Token manipulation.
  ☆53Updated 2 years ago
• mertdas / SharpLateral
  Lateral Movement
  ☆122Updated last year
• GetRektBoy724 / SharpHalos
  My implementation of Halo's Gate technique in C#
  ☆53Updated 2 years ago
• wietze / windows-dll-env-hijacking
  Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.
  ☆56Updated 2 years ago
• mlcsec / ASRenum-BOF
  Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
  ☆144Updated 10 months ago
• blackarrowsec / Handly
  Abuse leaked token handles.
  ☆131Updated last year
• rasta-mouse / SCMUACBypass
  ☆94Updated last year
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆78Updated 2 years ago
• trustedsec / CS_COFFLoader
  ☆127Updated last year
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆62Updated 2 years ago