Alternatives and similar repositories for it-o

Users that are interested in it-o are comparing it to the libraries listed below

• blinkenl1ghts / donloader
  donLoader is a shellcode loader creation tool that uses donut to convert executable payloads into shellcode to evade detection on disk.
  ☆20Updated 3 years ago
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆22Updated 3 years ago
• knavesec / EyeWitnessTheFitness
  Exactly what it sounds like, which is something rad
  ☆22Updated 2 years ago
• its-a-feature / loginItemManipulator
  ☆15Updated 4 years ago
• ajpc500 / RelayRumbler
  A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.
  ☆18Updated 4 years ago
• cedowens / JXA-Runner
  Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.
  ☆24Updated 4 years ago
• emperorcow / go-netscan
  ☆33Updated 4 years ago
• shlyuz / implant_go
  Golang Shlyuz Implant Implementation
  ☆13Updated last month
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆17Updated 6 years ago
• aj-code / 3gsocks
  3gsocks - a reverse connection socks5 based network pivot
  ☆10Updated 4 years ago
• bhassani / doublepulsar
  DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)
  ☆27Updated 5 years ago
• audibleblink / davil
  leaking net-ntlm with webdav
  ☆25Updated 4 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• magisterquis / bin2memfd
  Loads a program into a memfd and runs it.
  ☆13Updated 3 years ago
• ChoiSG / sNanoDumpInject
  NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls
  ☆11Updated 3 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 3 years ago
• kozmer / silentpulse
  single-threaded event driven sleep obfuscation poc for linux
  ☆34Updated 3 weeks ago
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆20Updated last year
• audibleblink / getsystem
  Small utility package for manipulating Windows process tokens
  ☆26Updated 3 years ago
• rek7 / patchy
  Automated Persistence and Lateral Movement using GCP Patch Management
  ☆15Updated 2 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆30Updated 4 years ago
• sk3w / beacon-object-files
  Miscellaneous examples for use with Cobalt Strike Beacon
  ☆10Updated 4 years ago
• skelsec / aiowinreg
  Registry hive parsing the async way
  ☆21Updated 3 months ago
• hosom / honeycred
  Utility to inject honey tokens into lsass.
  ☆28Updated 8 years ago
• lapolis / palinka_c2
  Just another useless C2 occupying space in some HDD somewhere.
  ☆20Updated 2 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Updated 4 years ago
• MythicC2Profiles / httpx
  Configurable, Community driven, HTTP C2 Profile
  ☆24Updated last month
• sneakerhax / Genesis
  Strategy for building a Red Team
  ☆17Updated last year
• antman1p / JXA_Proc_Tree
  A JXA script for enumerating running processes, printed out in a json, parent-child tree.
  ☆13Updated 3 years ago