Alternatives and similar repositories for OffensiveAutoIt

Users that are interested in OffensiveAutoIt are comparing it to the libraries listed below

• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆571Updated last year
• aaaddress1 / PR0CESS
  some gadgets about windows process and ready to use :)
  ☆610Updated 2 years ago
• Tylous / ZipExec
  A unique technique to execute binaries from a password protected zip
  ☆1,039Updated 3 years ago
• GhostPack / Koh
  The Token Stealer
  ☆510Updated 3 years ago
• tanc7 / EXOCET-AV-Evasion
  EXOCET - AV-evading, undetectable, payload delivery tool
  ☆844Updated 3 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆747Updated 2 years ago
• hlldz / RefleXXion
  RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, …
  ☆502Updated 4 years ago
• michaelweber / Macrome
  Excel Macro Document Reader/Writer for Red Teamers & Analysts
  ☆524Updated 4 years ago
• pwn1sher / KillDefender
  A small POC to make defender useless by removing its token privileges and lowering the token integrity
  ☆688Updated 3 years ago
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆579Updated 2 years ago
• frkngksl / Huan
  Encrypted PE Loader Generator
  ☆545Updated 4 years ago
• outflanknl / PrintNightmare
  ☆345Updated 4 years ago
• wietze / windows-dll-hijacking
  Project for identifying executables and DLLs vulnerable to relative path DLL hijacking.
  ☆486Updated last year
• Mr-Un1k0d3r / RedTeamCCode
  Red Team C code repo
  ☆569Updated last year
• Cerbersec / Ares
  Project Ares is a Proof of Concept (PoC) loader written in C/C++ based on the Transacted Hollowing technique
  ☆338Updated 4 years ago
• klezVirus / CheeseTools
  Self-developed tools for Lateral Movement/Code Execution
  ☆720Updated 4 years ago
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆287Updated 5 years ago
• APTortellini / unDefender
  Killing your preferred antimalware by abusing native symbolic links and NT paths.
  ☆358Updated 4 years ago
• juliourena / SharpNoPSExec
  Get file less command execution for lateral movement.
  ☆634Updated 3 years ago
• Tylous / Limelighter
  A tool for generating fake code signing certificates or signing real ones
  ☆958Updated 2 years ago
• Cr4sh / MicroBackdoor
  Small and convenient C2 tool for Windows targets
  ☆612Updated 3 years ago
• bats3c / ADCSPwn
  A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…
  ☆865Updated 2 years ago
• RedSiege / EXCELntDonut
  Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.
  ☆515Updated 5 years ago
• Cracked5pider / KaynLdr
  KaynLdr is a Reflective Loader written in C/ASM
  ☆555Updated 2 years ago
• hasherezade / process_ghosting
  Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…
  ☆681Updated last year
• RedTeamOperations / Advanced-Process-Injection-Workshop
  ☆777Updated 2 years ago
• daem0nc0re / TangledWinExec
  PoCs and tools for investigation of Windows process execution techniques
  ☆953Updated last week
• 0xsp-SRD / mortar
  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
  ☆1,497Updated 2 years ago
• MalwareApiLib / MalwareApiLibrary
  collection of apis used in malware development
  ☆230Updated 3 years ago
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆458Updated 4 years ago