Alternatives and similar repositories for SCExec

Users that are interested in SCExec are comparing it to the libraries listed below

• aleenzz / ADExplorerX
  ☆45Updated 11 months ago
• dust-life / Free445-BOF
  ☆23Updated last month
• timwhitez / Doge-DumpMem
  dump lsass
  ☆37Updated 3 years ago
• Jumbo-WJB / SharpAllowedToAct-Modify
  resource-based constrained delegation RBCD
  ☆44Updated 3 years ago
• Jumbo-WJB / SharpSniper-Modify
  query specific user and login IP from remote machine
  ☆17Updated 2 years ago
• JDArmy / Lsass-Shtinkering
  dump lsass tool
  ☆39Updated 2 years ago
• JDArmy / NO445-lateral-movement
  command execute without 445 port
  ☆52Updated 3 years ago
• timwhitez / memmod
  Fork & modify of Wireguard's Memmod
  ☆32Updated last year
• XiaoliChan / Invoke-sAMSpoofing
  CVE-2021-42287/CVE-2021-42278 exploits in powershell
  ☆37Updated 3 years ago
• Ridter / MSSQL_CLR
  MSSQL CLR for pentest.
  ☆54Updated last year
• RowTeam / SharpNBTScan
  ☆23Updated 2 years ago
• XiaoliChan / LDAPShell
  A wrapper of ldap_shell.py module which in ntlmrelayx
  ☆62Updated 2 years ago
• kyxiaxiang / CrackSleeve4.9
  ☆40Updated last year
• M0nster3 / ITaskServers
  Bypass EDR Create TaskServers
  ☆37Updated 2 years ago
• timwhitez / ScareCrow-Common
  ScareCrow loader binary source which easier to read and learn
  ☆25Updated 3 years ago
• mabangde / NTDSDumpEx
  ☆34Updated 2 months ago
• FeigongSec / NTLMINFO
  ☆46Updated 4 years ago
• StarfireLab / BrowserPivot
  ☆31Updated last year
• ASkyeye / Artillery
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆14Updated last year
• seventeenman / SelfDel-BOF
  Delete file regardless of whether the handle is used via SetFileInformationByHandle
  ☆43Updated last year
• timwhitez / Doge-RecycledGate
  Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;
  ☆32Updated 3 years ago
• XiaoliChan / CrackMapExec-Extension
  CrackMapExec extension module/protocol support
  ☆42Updated last year
• XiaoliChan / PetitPotam-V2
  More EFS coerced authentication method with PetitPotam.py
  ☆24Updated 2 years ago
• ASkyeye / AB
  Cs-Sleep-Mask-Fiber
  ☆18Updated 2 weeks ago
• XiaoliChan / winrm-PTH
  Golang implement winrm client with pass the hash
  ☆31Updated last year
• xunyang1 / ssp_dump_lsass
  RPC 调用添加ssp扩展dump lsass
  ☆18Updated 2 years ago
• Like0x / AddDefenderExclusions-BOF
  AddDefenderExclusions Beacon Object File
  ☆38Updated last year
• m1ddl3w4r3 / ExecRemoteNET
  Execute Remote Assembly with args passing and with AMSI and ETW patching .
  ☆33Updated 2 years ago
• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆74Updated last year
• XTeam-Wing / SharpMimikatz
  Csharp 反射加载dll
  ☆40Updated 3 years ago