Alternatives and similar repositories for py-amsi

Users that are interested in py-amsi are comparing it to the libraries listed below

• ProcessusT / EnumSSN
  Enumerate SSN (System Service Numbers or Syscall ID) and syscall instruction address in ntdll module by parsing the PEB of the current pr…
  ☆21Updated last year
• gemini-security / GithubC2
  ☆29Updated last year
• FuzzySecurity / Magikarp
  ECC Public Key Cryptography
  ☆38Updated last year
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆33Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated last year
• net-dawg / SSHniffer
  ☆35Updated last year
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆37Updated 10 months ago
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated 2 years ago
• syncwithali / HavocExploit
  A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.
  ☆38Updated last year
• snovvcrash / exfiltrate
  exfiltration/infiltration toolkit
  ☆23Updated last year
• mlcsec / SigFinder
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Updated last year
• iomoath / RedWardenLite
  A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.
  ☆45Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• Cyxow / CVE-2024-3183-POC
  POC for CVE-2024-3183 (FreeIPA Rosting)
  ☆23Updated 10 months ago
• horizon3ai / CVE-2024-9465
  Proof of Concept Exploit for CVE-2024-9465
  ☆29Updated 9 months ago
• Workingdaturah / BOF-Learning
  Cobalt Strike BOFS
  ☆16Updated last year
• Stuub / CVE-2024-29895-CactiRCE-PoC
  CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds
  ☆21Updated last year
• zimnyaa / beepsyscall
  An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.
  ☆12Updated last year
• matro7sh / havoc-gosecdump
  ☆18Updated 7 months ago
• p4p1 / havoc-store
  A simple website to act as a store for havoc modules and extensions
  ☆27Updated 5 months ago
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆19Updated 2 years ago
• seriotonctf / kerberos_aes_key
  Generate AES128 and AES256 Kerberos keys from a given username, password, and realm
  ☆18Updated 10 months ago
• HulkOperator / AuthStager
  ☆55Updated 8 months ago
• MzHmO / PPLDescribe
  Tool for obtaining information about PPL processes
  ☆17Updated last year
• d4rkiZ / ProcOpen-PHP-Webshell
  Experience the power of a PHP webshell designed to overcome the limitations of blacklisted system/exec functions.
  ☆24Updated last year
• S12cybersecurity / DumpLsass
  C++ Code to perform a MiniDump of lsass.exe
  ☆34Updated last year
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆57Updated last year
• JCSteiner / SGCC---public
  Command and Control Framework using powershell implants
  ☆35Updated last month
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆22Updated 2 months ago