Alternatives and similar repositories for FaceDancer

Users that are interested in FaceDancer are comparing it to the libraries listed below

• decoder-it / KrbRelayEx
  ☆376Updated 2 months ago
• cpu0x00 / Ghost
  Evasive shellcode loader
  ☆398Updated last year
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆269Updated last year
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆300Updated 2 years ago
• cybersectroll / TrollAMSI
  ☆186Updated 7 months ago
• V-i-x-x / AMSI-WRITE-RAID-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆315Updated 3 months ago
• deepinstinct / DCOMUploadExec
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆378Updated last year
• ZERODETECTION / MSC_Dropper
  ☆242Updated last year
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆257Updated last year
• boku7 / venom
  Venom C2 is a dependency‑free Python3 Command & Control framework for redteam persistence
  ☆413Updated 2 months ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆155Updated last year
• floesen / EventLogCrasher
  ☆192Updated last year
• rtecCyberSec / BitlockMove
  Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
  ☆422Updated 6 months ago
• icyguider / LightsOut
  Generate an obfuscated DLL that will disable AMSI & ETW
  ☆329Updated last year
• tehstoni / LexiCrypt
  Shellcode encryptor using a substitution cipher with a randomly generated key.
  ☆144Updated 11 months ago
• mandiant / msi-search
  ☆290Updated 2 years ago
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆283Updated last year
• rasta-mouse / OST-C2-Spec
  Open Source C&C Specification
  ☆277Updated 10 months ago
• rvrsh3ll / Bolthole
  Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.
  ☆261Updated 8 months ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆195Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆211Updated last year
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆202Updated 9 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆187Updated 8 months ago
• S1lkys / SharpKiller
  Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8
  ☆351Updated last year
• dobin / SuperMega
  Stealthily inject shellcode into an executable
  ☆438Updated 2 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆203Updated 10 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆214Updated 2 months ago
• ph4nt0mbyt3 / Darkside
  C# AV/EDR Killer using less-known driver (BYOVD)
  ☆182Updated 2 years ago
• skelsec / evilrdp
  ☆306Updated 10 months ago
• Maldev-Academy / MaldevAcademyLdr.2
  RunPE implementation with multiple evasive techniques (2)
  ☆265Updated 3 months ago