Alternatives and similar repositories for DLLHound:

Users that are interested in DLLHound are comparing it to the libraries listed below

• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆195Updated 9 months ago
• trustedsec / specula
  ☆190Updated 5 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆158Updated 3 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆187Updated 3 weeks ago
• mandiant / ccmpwn
  ☆193Updated 11 months ago
• decoder-it / KrbRelay-SMBServer
  ☆207Updated 5 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆147Updated 2 months ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆192Updated 5 months ago
• yoda66 / MAAS
  Malware As A Service
  ☆132Updated last year
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆255Updated 4 months ago
• RedSiege / jargon
  ☆135Updated 8 months ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆287Updated 4 months ago
• mandiant / msi-search
  ☆274Updated last year
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆188Updated 5 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆159Updated 3 months ago
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆97Updated last week
• cybersectroll / TrollAMSI
  ☆170Updated 4 months ago
• WKL-Sec / GregsBestFriend
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆184Updated last year
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆287Updated 4 months ago
• CCob / Shwmae
  ☆145Updated last month
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆205Updated last month
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆117Updated last month
• rasta-mouse / OST-C2-Spec
  Open Source C&C Specification
  ☆240Updated 3 weeks ago
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆206Updated 2 months ago
• logangoins / Cable
  .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
  ☆276Updated 4 months ago