Alternatives and similar repositories for py-amsi:

Users that are interested in py-amsi are comparing it to the libraries listed below

• ProcessusT / EnumSSN
  Enumerate SSN (System Service Numbers or Syscall ID) and syscall instruction address in ntdll module by parsing the PEB of the current pr…
  ☆20Updated last year
• snovvcrash / exfiltrate
  exfiltration/infiltration toolkit
  ☆23Updated last year
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆36Updated 6 months ago
• iomoath / RedWardenLite
  A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.
  ☆43Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• gemini-security / GithubC2
  ☆28Updated last year
• horizon3ai / CVE-2024-9465
  Proof of Concept Exploit for CVE-2024-9465
  ☆29Updated 5 months ago
• redr0nin / CVE-2024-38143
  Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
  ☆21Updated last month
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• Cyxow / CVE-2024-3183-POC
  POC for CVE-2024-3183 (FreeIPA Rosting)
  ☆20Updated 7 months ago
• net-dawg / SSHniffer
  ☆34Updated last year
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆26Updated last year
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆38Updated last year
• Workingdaturah / BOF-Learning
  Cobalt Strike BOFS
  ☆15Updated last year
• duckbillsecurity / pdf-smuggler
  Create PDFs with HTML smuggling attachments that save on opening the document.
  ☆29Updated last year
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆28Updated 7 months ago
• Offensive-Panda / .NET_PROFILER_DLL_LOADING
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆41Updated 8 months ago
• nickvourd / RTI-Toolkit
  Remote Template Injection Toolkit
  ☆33Updated 11 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆31Updated 10 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆30Updated last year
• FuzzySecurity / Magikarp
  ECC Public Key Cryptography
  ☆37Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated 8 months ago
• OtterHacker / Cerbere
  ☆47Updated 2 years ago
• Helixo32 / DetectHooks
  Detect userland hooks placed by AV/EDR
  ☆27Updated last year
• atabetnouhaila / API-hashing
  ☆18Updated 5 months ago
• HulkOperator / AuthStager
  ☆54Updated 5 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• Mr-Cyb3rgh0st / Excel-Exploit
  MacroExploit use in excel sheet
  ☆20Updated last year
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago