Alternatives and similar repositories for SpoolSampleModified

Users that are interested in SpoolSampleModified are comparing it to the libraries listed below

• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆60Updated 2 years ago
• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Updated 2 years ago
• EspressoCake / DLL-Exports-Extraction-BOF
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆90Updated 4 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆91Updated 2 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆54Updated 2 months ago
• Crypt0s / DelegationBOF
  ☆142Updated 3 years ago
• 0xsp-SRD / callback_injection-Csharp
  this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…
  ☆88Updated 3 years ago
• Tw1sm / aesKrbKeyGen
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆81Updated 3 years ago
• ausec-it / bof-registry
  Cobalt Strike beacon object file that allows you to query and make changes to the Windows Registry
  ☆30Updated 4 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆58Updated 3 years ago
• Nariod / laz-y
  Automating payload generation for OSEP labs and exam.
  ☆34Updated 3 years ago
• Wh04m1001 / DiagTrackEoP
  ☆88Updated 3 years ago
• susMdT / SharpAgent
  C# havoc implant
  ☆100Updated 2 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆55Updated 9 months ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆85Updated 2 years ago
• Tw1sm / SharpInjector
  Flexible C# shellcode runner
  ☆39Updated 4 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆55Updated 3 years ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆22Updated 3 years ago
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆91Updated 3 years ago
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆86Updated 2 years ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆105Updated 2 years ago
• waawaa / AMSI_Rubeus_bypass
  ☆72Updated 3 years ago
• OG-Sadpanda / SharpSword
  Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly
  ☆117Updated last year
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆38Updated 3 years ago
• sliverarmory / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆51Updated 4 years ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆32Updated 3 years ago
• soufianetahiri / CitrixSecureAccessAuthCookieDump
  Dump Citrix Secure Access auth cookie from the process memory
  ☆76Updated 3 years ago
• c3r3br4t3 / ShadowRDP
  ☆75Updated 2 years ago
• boku7 / halosgate-ps
  Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes
  ☆108Updated 2 years ago
• EspressoCake / DynamicTabRename
  CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.
  ☆25Updated 3 years ago