Alternatives and similar repositories for DLLHound

Users that are interested in DLLHound are comparing it to the libraries listed below

• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆172Updated last month
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆278Updated last week
• trustedsec / specula
  ☆191Updated 8 months ago
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆224Updated 3 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆223Updated last month
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆200Updated 3 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆200Updated 11 months ago
• cybersectroll / TrollAMSI
  ☆176Updated this week
• mandiant / ccmpwn
  ☆203Updated last year
• rasta-mouse / OST-C2-Spec
  Open Source C&C Specification
  ☆253Updated 3 months ago
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆190Updated 2 weeks ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆306Updated 6 months ago
• decoder-it / KrbRelay-SMBServer
  ☆219Updated 7 months ago
• RedefiningReality / Cobalt-Strike
  Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
  ☆292Updated last year
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆162Updated last month
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆229Updated 2 weeks ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆200Updated 7 months ago
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆192Updated 2 months ago
• akamai / BadSuccessor
  ☆162Updated 2 weeks ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆180Updated last month
• WKL-Sec / GregsBestFriend
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆190Updated last year
• deepinstinct / NoFilter
  ☆299Updated 7 months ago
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆209Updated 7 months ago
• cogiceo / GPOHound
  Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data
  ☆275Updated last month
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆257Updated 6 months ago
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆161Updated last month
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆359Updated last year
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆276Updated last year
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆98Updated 2 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆156Updated 4 months ago