Alternatives and similar repositories for lolcerts

Users that are interested in lolcerts are comparing it to the libraries listed below

• hackerhouse-opensource / Marble
  The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
  ☆291Updated last year
• lkarlslund / nifo
  Nuke It From Orbit - remove AV/EDR with physical access
  ☆258Updated 5 months ago
• FalconForceTeam / FalconHound
  FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is de…
  ☆795Updated 2 months ago
• jsecurity101 / JonMon
  ☆221Updated 3 months ago
• facebookincubator / TTPForge
  The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).
  ☆376Updated 3 weeks ago
• floesen / EventLogCrasher
  ☆187Updated last year
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆170Updated 2 months ago
• MalBeacon / what-is-this-stealer
  A repository of credential stealer formats
  ☆214Updated last month
• srlabs / Certiception
  An ADCS honeypot to catch attackers in your internal network.
  ☆288Updated 10 months ago
• dobin / avred
  Analyse your malware to surgically obfuscate it
  ☆467Updated 2 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆123Updated 3 months ago
• HackingLZ / IndicatorOfCanary
  Canary Detection
  ☆168Updated last year
• Krypteria / AtlasLdr
  Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls
  ☆369Updated 7 months ago
• Slowerzs / ThievingFox
  ☆542Updated last year
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆388Updated this week
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆149Updated 7 months ago
• naksyn / Pyramid
  a tool to help operate in EDRs' blind spots
  ☆730Updated 5 months ago
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆195Updated 2 months ago
• hackerhouse-opensource / OffensiveLua
  Offensive Lua.
  ☆184Updated last year
• georgesotiriadis / Chimera
  Automated DLL Sideloading Tool With EDR Evasion Capabilities
  ☆473Updated last year
• Xacone / BestEdrOfTheMarket
  AV/EDR Evasion Lab for Training & Learning Purposes
  ☆1,246Updated last week
• spellshift / realm
  Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.
  ☆487Updated last week
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆134Updated last year
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated 9 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆250Updated last year
• thefLink / Hunt-Sleeping-Beacons
  Aims to identify sleeping beacons
  ☆590Updated 5 months ago
• gatariee / gocheck
  Because AV evasion should be easy.
  ☆718Updated 5 months ago
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆160Updated last month
• Helixo32 / CrimsonEDR
  Simulate the behavior of AV/EDR for malware development training.
  ☆523Updated last year
• Idov31 / Venom
  Venom is a library that meant to perform evasive communication using stolen browser socket
  ☆381Updated last year