Alternatives and similar repositories for awesome-persistence:

Users that are interested in awesome-persistence are comparing it to the libraries listed below

• Nariod / Tartocitron
  Tartocitron is a repo to have fun with malwares and the Rust language. This repo provides working examples of dropper written in Rust.
  ☆10Updated 2 years ago
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆16Updated last year
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆46Updated 2 years ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆17Updated last year
• winsecurity / AMSI-Bypass-HWBP
  ☆21Updated last month
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆26Updated last year
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆45Updated last year
• atabetnouhaila / API-hashing
  ☆18Updated 6 months ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 3 years ago
• lleon1435 / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆14Updated last year
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆12Updated last year
• S3cur3Th1sSh1t / nim-strenc
  string encryption in Nim
  ☆19Updated 10 months ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated 10 months ago
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆24Updated 7 months ago
• MzHmO / PPLDescribe
  Tool for obtaining information about PPL processes
  ☆17Updated last year
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆18Updated last year
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆52Updated 2 years ago
• susMdT / fictional-invention
  idk man this was the default github name
  ☆35Updated 2 years ago
• jordanjoewatson / payloadkit
  An offensive security framework for writing payloads
  ☆17Updated 2 years ago
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆19Updated 3 months ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆53Updated last year
• tehstoni / RustyKeys
  UAC Bypass using CMSTP in Rust
  ☆26Updated 4 months ago
• Helixo32 / DetectHooks
  Detect userland hooks placed by AV/EDR
  ☆27Updated last year
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆18Updated this week
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆31Updated last year
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 5 months ago
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆21Updated last week