Alternatives and similar repositories for dvenom:

Users that are interested in dvenom are comparing it to the libraries listed below

• mertdas / RedPersist
  ☆214Updated 11 months ago
• N1k0la-T / CVE-2023-36745
  ☆162Updated last year
• sokaRepo / CoercedPotatoRDLL
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆199Updated last year
• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆146Updated 8 months ago
• maxDcb / C2TeamServer
  TeamServer and Client of Exploration Command and Control Framework
  ☆105Updated last week
• Workingdaturah / Payload-Generator
  An aggressor script that can help automate payload building in Cobalt Strike
  ☆114Updated last year
• 0xEr3bus / RdpStrike
  Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
  ☆236Updated 8 months ago
• fin3ss3g0d / ASPJinjaObfuscator
  Heavily obfuscated ASP web shell generation tool.
  ☆163Updated 10 months ago
• SaadAhla / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆145Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆80Updated last year
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆339Updated last year
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆150Updated 9 months ago
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆218Updated 9 months ago
• rweijnen / createdump
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆145Updated 5 months ago
• TunnelGRE / Percino
  Evasive Golang Loader
  ☆129Updated 7 months ago
• Octoberfest7 / CVE-2023-36874_BOF
  Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
  ☆205Updated last year
• blackarrowsec / Handly
  Abuse leaked token handles.
  ☆131Updated last year
• decoder-it / ADCSCoercePotato
  ☆221Updated 9 months ago
• kleiton0x00 / RemoteShellcodeExec
  Execute shellcode from a remote-hosted bin file using Winhttp.
  ☆230Updated last year
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆190Updated last year
• nbaertsch / AutoAppDomainHijack
  Automated .NET AppDomain hijack payload generation
  ☆120Updated 3 weeks ago
• dmcxblue / SharpGhostTask
  A C# port from Invoke-GhostTask
  ☆112Updated last year
• trevorsaudi / Mshikaki
  A shellcode injection tool showcasing various process injection techniques
  ☆134Updated last year
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆135Updated last year
• Mr-Un1k0d3r / Cookie-and-Handle-Stealer
  C or BOF file to extract WebKit master key to decrypt user cookie
  ☆188Updated 10 months ago
• souzomain / Shaco
  Shaco is a linux agent for havoc
  ☆156Updated last year
• EvilBytecode / EDR-XDR-AV-Killer
  Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
  ☆259Updated 3 weeks ago
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆209Updated last year
• safedv / RustPotato
  A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…
  ☆224Updated last month