Alternatives and similar repositories for volplugins

Users that are interested in volplugins are comparing it to the libraries listed below

• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆48Updated 5 months ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆56Updated 2 years ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆70Updated 3 months ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated last year
• FarghlyMal / Config-Extractors
  ☆27Updated 6 months ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆56Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• codewhitesec / SysmonEnte
  ☆75Updated 2 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 2 years ago
• nullsection / SharpETW-Patch
  ☆23Updated last year
• rkbennett / pybof
  Python module for running BOFs
  ☆70Updated last year
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆94Updated 10 months ago
• jaredcatkinson / MalwareMorphology
  ☆80Updated 6 months ago
• sidaf / moonshine
  ☆69Updated last year
• mvelazc0 / SharpShareFinder
  SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveragi…
  ☆28Updated 10 months ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆38Updated 3 years ago
• cod3nym / Ghosting-AMSI
  Ghosting-AMSI
  ☆17Updated last month
• decoder-it / Troopers24
  ☆41Updated 10 months ago
• outflanknl / Training-MSOfficeOffensiveTradecraft
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆52Updated last year
• xalicex / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆14Updated 2 years ago
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆16Updated last week
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆38Updated 2 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆91Updated 2 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago