Alternatives and similar repositories for procscan:

Users that are interested in procscan are comparing it to the libraries listed below

• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆31Updated 5 years ago
• Wh04m1001 / RazerEoP
  ☆26Updated 2 years ago
• waleedassar / SyscallNumberExtractor
  ☆24Updated 3 years ago
• xforcered / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆54Updated 3 years ago
• 3sjay / sploits
  some sploits
  ☆17Updated 7 months ago
• thiagomayllart / Covenant_Alternate
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆22Updated 4 years ago
• SpecterOps / ipc-research
  Inter-Process Communication Mechanisms
  ☆26Updated 4 years ago
• ihack4falafel / Dell-Driver-EoP-CVE-2021-21551
  Dell Driver EoP (CVE-2021-21551)
  ☆32Updated 3 years ago
• MinatoTW / NamedPipeImpersonation
  ☆10Updated 4 years ago
• V3ded / ToolDump-v1
  Some of my custom "tools".
  ☆23Updated 3 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 4 years ago
• synacktiv / CacheData_decrypt
  A simple Toolkit to BF and decrypt Windows EntraId CacheData
  ☆17Updated 10 months ago
• hotnops / COM_Mapper
  A tool to create COM class/interface relationships in neo4j
  ☆49Updated 2 years ago
• decoder-it / bluehatil22
  Slides from out talk at BH IL 2022
  ☆28Updated 3 years ago
• OtterHacker / LabS4U2Self
  ☆30Updated 2 years ago
• kyleavery / scarecrow_wrapper
  ☆37Updated 3 years ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆25Updated 4 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• OsandaMalith / WindowsInternals
  Experiments on the Windows Internals
  ☆30Updated 5 years ago
• nettitude / SyscallsExtractor
  ☆23Updated 3 years ago
• kartikdurg / Enum-LSASS
  LSASS enumeration like pypykatz written in C-Lang
  ☆20Updated 3 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 2 years ago
• daem0nc0re / HEVD-CSharpKernelPwn
  CSharp Writeups for HackSys Extreme Vulnerable Driver
  ☆43Updated 3 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• k0keoyo / ksRPC_analysis_script
  ☆12Updated 4 years ago
• Wh04m1001 / ZoneAlarmEoP
  Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV
  ☆26Updated 2 years ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆52Updated 4 years ago
• cedowens / SwiftBelt-JXA
  JXA implementation of some SwiftBelt functions. Author: Cedric Owens
  ☆44Updated last year
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆31Updated 2 years ago