Alternatives and similar repositories for ceos:

Users that are interested in ceos are comparing it to the libraries listed below

• xforcered / ForsHops
  ForsHops
  ☆98Updated last month
• chryzsh / awesome-bof
  🧠 The ultimate, community-curated resource for Beacon Object Files (BOFs) — tutorials, how-tos, deep dives, and reference materials.
  ☆60Updated this week
• p4p1 / havoc-privkit
  a port of privkit bof for havoc
  ☆23Updated last year
• xforcered / Being-A-Good-CLR-Host
  ☆103Updated 3 months ago
• dmcxblue / PyObscura
  A python script that automates a C2 Profile build
  ☆40Updated last month
• xforcered / VectoredExceptionHandling
  ☆32Updated 8 months ago
• kozmer / aad-bofs
  AzureAD beacon object files
  ☆117Updated 4 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆98Updated 9 months ago
• FalconForceTeam / bof-winrm-client
  ☆108Updated 3 months ago
• rbmm / SC_DEMO
  ☆114Updated last month
• Octoberfest7 / enumhandles_BOF
  ☆125Updated 7 months ago
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆115Updated last year
• sagiol / Terms-of-What
  Terms of Use Conditional Access M365 Evilginx Phishlet
  ☆32Updated last week
• FatCyclone / D-Pwn
  D/Invoke standalone shellcode runners
  ☆37Updated last year
• kyle41111 / RedTeamHelp
  Tools I use on red team engagements and more
  ☆32Updated last year
• dmcxblue / AzureRedirector
  A C# project that builds a Web Application which redirects all HTTPS
  ☆24Updated 2 months ago
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆77Updated 2 months ago
• zero2504 / Early-Cryo-Bird-Injections
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆92Updated 3 weeks ago
• ZERODETECTION / MSC_Dropper
  ☆153Updated 8 months ago
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆76Updated 2 months ago
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆61Updated last year
• paranoidninja / BRC4-BOF-Artillery
  ☆105Updated last month
• GeisericII / Winpacket
  Impacket pre-compiled binaries
  ☆16Updated last year
• dmcxblue / AzureFunctionRedirector
  ☆43Updated 2 weeks ago
• netero1010 / SCCMVNC
  A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…
  ☆87Updated 6 months ago
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆114Updated 11 months ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆81Updated 5 months ago
• WafflesExploits / Bloodhound-query-legacy2ce
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆25Updated 3 months ago
• wotwot563 / aad_prt_bof
  ☆114Updated last year
• nickvourd / Rocabella
  Sniffing files generator
  ☆54Updated 2 months ago