Alternatives and similar repositories for EXP-301-cheat-sheets:

Users that are interested in EXP-301-cheat-sheets are comparing it to the libraries listed below

• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆17Updated last year
• HernanRodriguez1 / RevershellTCP_BypassAMSI
  ☆12Updated 3 years ago
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆16Updated last year
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• duckbillsecurity / pdf-smuggler
  Create PDFs with HTML smuggling attachments that save on opening the document.
  ☆29Updated last year
• Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397
  ☆21Updated last year
• patrickhener / invictus
  OSED Practice binary
  ☆24Updated last year
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 3 years ago
• MrTuxx / aad-sso-enum-brute-spray
  Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…
  ☆13Updated 3 years ago
• a7t0fwa7 / DllDragon
  A simple to use single-include Windows API resolver
  ☆20Updated 9 months ago
• whokilleddb / ProcReveal
  A kernel driver to get a Handle to virtually *every* process
  ☆13Updated last year
• winsecurity / AMSI-Bypass-HWBP
  ☆20Updated last month
• wsummerhill / IPv4Fuscation-Encrypted
  ☆19Updated last year
• ZephrFish / SandboxSpy
  Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…
  ☆20Updated 11 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆17Updated last year
• atabetnouhaila / API-hashing
  ☆18Updated 6 months ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• malcomvetter / TLAD
  The Totally Legit Authentication Dialog
  ☆12Updated last year
• S3cur3Th1sSh1t / nim-strenc
  string encryption in Nim
  ☆18Updated 10 months ago
• capt-meelo / AggressorScripts
  Collection of scripts that I created to make my life easier.
  ☆11Updated 3 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• bleedx-93 / Camus
  Reverse_Shell Implemented in C++ with the ability to bypass sandboxes
  ☆12Updated 4 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• Meckazin / HidingFromETW
  PoC for detecting and evading ETW detection of .Net Assembly.Load
  ☆20Updated 4 years ago
• EspressoCake / MITRE_ATTACK_CLI
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆16Updated 2 years ago
• securekomodo / CVE-2024-22026
  Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"
  ☆13Updated 11 months ago
• VirtualAlllocEx / Create_Thread_Inline_Assembly_x86
  This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly
  ☆18Updated 2 years ago