Alternatives and similar repositories for SharpRDPHijack

Users that are interested in SharpRDPHijack are comparing it to the libraries listed below

• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆418Updated 3 years ago
• 0xthirteen / SharpMove
  .NET Project for performing Authenticated Remote Execution
  ☆402Updated 2 years ago
• mitchmoser / SharpShares
  Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
  ☆362Updated 3 years ago
• cube0x0 / MiniDump
  C# Lsass parser
  ☆296Updated 3 years ago
• S3cur3Th1sSh1t / Invoke-SharpLoader
  ☆363Updated 4 years ago
• RiccardoAncarani / LiquidSnake
  LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript
  ☆343Updated 4 years ago
• iomoath / PowerShx
  Run Powershell without software restrictions.
  ☆284Updated 3 years ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆487Updated 2 years ago
• 0xthirteen / StayKit
  Cobalt Strike kit for Persistence
  ☆478Updated 5 years ago
• nettitude / SharpWSUS
  ☆466Updated 2 years ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆309Updated 3 years ago
• boku7 / spawn
  Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
  ☆469Updated 2 years ago
• boh / RedCsharp
  Collection of C# projects. Useful for pentesting and redteaming.
  ☆313Updated last year
• 0xthirteen / SharpStay
  .NET project for installing Persistence
  ☆484Updated last year
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆369Updated 3 years ago
• cyberark / Evasor
  A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies
  ☆327Updated 2 years ago
• GeorgePatsias / ScareCrow-CobaltStrike
  Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)
  ☆465Updated 3 years ago
• HunnicCyber / SharpSniper
  Find specific users in active directory via their username and logon IP address
  ☆386Updated 5 years ago
• subat0mik / whoamsi
  An effort to track security vendors' use of Microsoft's Antimalware Scan Interface
  ☆252Updated 3 years ago
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆366Updated 4 years ago
• improsec / SharpEventPersist
  Persistence by writing/reading shellcode from Event Log
  ☆378Updated 3 years ago
• 0xthirteen / MoveKit
  Cobalt Strike kit for Lateral Movement
  ☆675Updated 5 years ago
• xforcered / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆429Updated 3 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆386Updated 3 years ago
• MythicAgents / Apollo
  A .NET Framework 4.0 Windows Agent
  ☆498Updated last week
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆419Updated last year
• eksperience / KnockOutlook
  A little tool to play with Outlook
  ☆208Updated 3 years ago
• boku7 / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆380Updated 2 years ago
• mdsecactivebreach / Farmer
  ☆395Updated 4 years ago