Alternatives and similar repositories for volplugins:

Users that are interested in volplugins are comparing it to the libraries listed below

• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆53Updated 2 years ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• xalicex / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆14Updated 2 years ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆55Updated 2 years ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆46Updated 3 weeks ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆18Updated 2 years ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• codewhitesec / SysmonEnte
  ☆71Updated 2 years ago
• nullsection / SharpETW-Patch
  ☆22Updated last year
• rkbennett / pybof
  Python module for running BOFs
  ☆64Updated last year
• h4wkst3r / SharPersist
  Windows Persistence Toolkit in C#
  ☆36Updated 2 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 2 years ago
• morRubin / NegoExRelay
  ☆83Updated 2 years ago
• rvrsh3ll / DInjector
  Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
  ☆20Updated 2 years ago
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆58Updated last year
• Mr-B0b / BloodCheck
  BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.
  ☆17Updated 3 years ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆54Updated 3 months ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆88Updated 2 years ago
• EspressoCake / BOF_Development_Docker
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆47Updated last year
• bagelByt3s / ludus_adfs
  An Ansible collection that installs an ADFS deployment with optional configurations.
  ☆27Updated last month
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆73Updated 10 months ago
• decoder-it / Troopers24
  ☆42Updated 6 months ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆118Updated 2 years ago
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆26Updated last year
• EspressoCake / Process_Protection_Level_BOF
  ☆54Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• 0xe7 / WonkaVision
  ☆81Updated 2 years ago