Alternatives and similar repositories for EmpEISDecrypt

Users that are interested in EmpEISDecrypt are comparing it to the libraries listed below

• xenoscr / SharpMailBOF
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆15Updated 4 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆31Updated 5 years ago
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆18Updated 5 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 5 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆21Updated 5 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated last year
• XaFF-XaFF / AMSI-Bypass
  Rasta's mouse AMSI patch but with function that makes it undetectable.
  ☆13Updated 4 years ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆33Updated 3 years ago
• jfmaes / Clippi-B
  ☆37Updated 5 years ago
• GetRektBoy724 / JALSI
  JALSI - Just Another Lame Shellcode Injector
  ☆30Updated 4 years ago
• threatexpress / cobaltstrike_payload_generator
  Quickly generate every payload type for each listener and optionally host via HTTP.
  ☆22Updated 4 years ago
• hotnops / mythic-sync
  A tool to sync mythic events with ghostwriter oplog.
  ☆14Updated last year
• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆29Updated 6 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Updated 4 years ago
• trustedsec / inProc_Evade_Get-InjectedThread
  PoC code from blog
  ☆16Updated 5 years ago
• 0xthirteen / CleanRunMRU
  Get or remove RunMRU values
  ☆60Updated 6 years ago
• vysecurity / AzureAppC2
  A script that can be deployed to Azure App for C2 / Proxy / Redirector
  ☆41Updated 6 years ago
• mobdk / WinBoost
  Execute Mimikatz with different technique
  ☆51Updated 4 years ago
• jnqpblc / SharpReg
  SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.
  ☆29Updated 5 years ago
• hausec / Set-RBCDBytes
  ☆18Updated 5 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆13Updated 5 years ago
• jfmaes / Red-Route53-Interactive
  ☆19Updated 5 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 4 years ago
• mantvydasb / RdpThief
  Extracting Clear Text Passwords from mstsc.exe using API Hooking.
  ☆18Updated 6 years ago
• ricardojoserf / http-protocol-exfil
  Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)
  ☆24Updated 4 years ago
• HackingThings / SuperSneakyExec
  Loading and executing shellcode in C# without PInvoke.
  ☆22Updated 4 years ago
• fastlorenzo / redelk-server
  Ansible role to deploy RedELK server
  ☆19Updated 2 years ago
• S3cur3Th1sSh1t / TeamViewerDecrypt
  ☆17Updated 5 years ago
• matterpreter / getDA.sh
  Identify common attack paths to get Domain Administrator
  ☆22Updated 6 years ago
• vletoux / OxidBindings
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Updated 5 years ago