cyberark/PipeViewer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cyberark/PipeViewer)

cyberark / PipeViewer

A tool that shows detailed information about named pipes in Windows

☆740

Alternatives and similar repositories for PipeViewer

Users that are interested in PipeViewer are comparing it to the libraries listed below

Sorting:

cyberark / RPCMon
View on GitHub
RPC Monitor tool based on Event Tracing for Windows
☆388Aug 19, 2024Updated last year
trailofbits / RpcInvestigator
View on GitHub
Exploring RPC interfaces on Windows
☆346Jan 30, 2024Updated 2 years ago
binderlabs / DirCreate2System
View on GitHub
Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
☆363Dec 19, 2022Updated 3 years ago
daem0nc0re / TangledWinExec
View on GitHub
PoCs and tools for investigation of Windows process execution techniques
☆954Feb 2, 2026Updated last month
deepinstinct / Dirty-Vanity
View on GitHub
A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
☆674Dec 23, 2022Updated 3 years ago
CCob / ThreadlessInject
View on GitHub
Threadless Process Injection using remote function hooking.
☆810Sep 4, 2024Updated last year
JanielDary / ImmoralFiber
View on GitHub
Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
☆283Sep 18, 2024Updated last year
Dec0ne / DavRelayUp
View on GitHub
DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
☆568Jun 5, 2023Updated 2 years ago
Accenture / Spartacus
View on GitHub
Spartacus DLL/COM Hijacking Toolkit
☆1,080Feb 1, 2024Updated 2 years ago
WKL-Sec / dcomhijack
View on GitHub
Lateral Movement Using DCOM and DLL Hijacking
☆324Jun 18, 2023Updated 2 years ago
mdsecactivebreach / DragonCastle
View on GitHub
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
☆303Oct 26, 2022Updated 3 years ago
grimlockx / ADCSKiller
View on GitHub
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
☆741May 19, 2023Updated 2 years ago
floesen / KExecDD
View on GitHub
Admin to Kernel code execution using the KSecDD driver
☆264Apr 19, 2024Updated last year
lem0nSec / ShellGhost
View on GitHub
A memory-based evasion technique which makes shellcode invisible from process start to end.
☆1,198Oct 16, 2023Updated 2 years ago
Wra7h / FlavorTown
View on GitHub
Various ways to execute shellcode
☆508Mar 13, 2024Updated 2 years ago
Mayyhem / Maestro
View on GitHub
Abusing Azure services over C2
☆367Jan 20, 2026Updated 2 months ago
VoldeSec / PatchlessCLRLoader
View on GitHub
.NET assembly loader with patchless AMSI and ETW bypass
☆374Apr 19, 2023Updated 2 years ago
deepinstinct / ContainYourself
View on GitHub
A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
☆317Aug 31, 2023Updated 2 years ago
zimnyaa / noWatch
View on GitHub
Implant drop-in for EDR testing
☆147Nov 15, 2023Updated 2 years ago
zblurx / certsync
View on GitHub
Dump NTDS with golden certificates and UnPAC the hash
☆647Mar 20, 2024Updated 2 years ago
ipSlav / DirtyCLR
View on GitHub
An App Domain Manager Injection DLL PoC on steroids
☆212Dec 14, 2023Updated 2 years ago
bohops / DynamicDotNet
View on GitHub
A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
☆145May 18, 2024Updated last year
redteamsocietegenerale / DLLirant
View on GitHub
DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.
☆498Nov 29, 2022Updated 3 years ago
nettitude / ShellcodeMutator
View on GitHub
☆246Dec 16, 2022Updated 3 years ago
ZeroMemoryEx / Amsi-Killer
View on GitHub
Lifetime AMSI bypass
☆672Sep 26, 2023Updated 2 years ago
klezVirus / SilentMoonwalk
View on GitHub
PoC Implementation of a fully dynamic call stack spoofer
☆928Jul 20, 2024Updated last year
zblurx / dploot
View on GitHub
DPAPI looting remotely and locally in Python
☆542Mar 13, 2026Updated last week
passthehashbrowns / VectoredExceptionHandling
View on GitHub
☆108Aug 21, 2024Updated last year
sokaRepo / CoercedPotatoRDLL
View on GitHub
Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
☆225Nov 23, 2023Updated 2 years ago
Mayyhem / SharpSCCM
View on GitHub
A C# utility for interacting with SCCM
☆683Aug 20, 2025Updated 7 months ago
wh0amitz / KRBUACBypass
View on GitHub
UAC Bypass By Abusing Kerberos Tickets
☆507Aug 10, 2023Updated 2 years ago
lap1nou / CLR_Heap_encryption
View on GitHub
☆101Oct 7, 2023Updated 2 years ago
naksyn / Pyramid
View on GitHub
a tool to help operate in EDRs' blind spots
☆769Dec 2, 2024Updated last year
cube0x0 / LdapSignCheck
View on GitHub
Beacon Object File & C# project to check LDAP signing
☆199Aug 7, 2024Updated last year
Z4kSec / Masky
View on GitHub
Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
☆399Aug 15, 2025Updated 7 months ago
reveng007 / DarkWidow
View on GitHub
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
☆787Jan 26, 2026Updated last month
daem0nc0re / PrivFu
View on GitHub
Kernel mode WinDbg extension and PoCs for token privilege investigation.
☆905Jan 21, 2025Updated last year
OtterHacker / SetProcessInjection
View on GitHub
☆153Oct 2, 2023Updated 2 years ago
outflanknl / edr-internals
View on GitHub
Tools for analyzing EDR agents
☆278Jun 10, 2024Updated last year