Alternatives and similar repositories for PoSHBypass:

Users that are interested in PoSHBypass are comparing it to the libraries listed below

• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• ALBY-Project / ALBY
  ☆21Updated 6 years ago
• slyd0g / SharpRoast-Parser
  Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.
  ☆32Updated 5 years ago
• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆33Updated 5 years ago
• NotoriousRebel / ConfigPersist
  Modifies machine.config for persistence after installing signed .net assembly onto GAC
  ☆12Updated 2 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆42Updated 7 years ago
• curtbraz / Invoke-NeutralizeAV
  Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting
  ☆41Updated 5 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆17Updated 6 years ago
• 0xbadjuju / PowerProvider
  ☆40Updated 6 years ago
• rmdavy / AmsiPEBWalkVBA
  Walking the PEB in VBA
  ☆22Updated 4 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆58Updated 5 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 7 years ago
• attactics / cslogwatch
  Cobalt Strike log state tracking, parsing, and storage
  ☆23Updated 5 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆28Updated 5 years ago
• rvrsh3ll / FlaskRedirectorProtector
  Protect your servers with a secret header
  ☆29Updated 4 years ago
• maaaaz / mimicertz
  A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates
  ☆25Updated 6 years ago
• upils / redirect-lib
  Library of traffic redirectors
  ☆26Updated 4 years ago
• freshness79 / unlock
  Microsoft Applocker evasion tool
  ☆38Updated 5 years ago
• rvrsh3ll / MSSQLUDPScanner
  Discover MSSQL Instances via UDP Scanning
  ☆23Updated 6 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• jaredhaight / ReflectCmd
  A simple reflective dll example
  ☆19Updated 8 years ago
• ChrisAD / ads-payload
  Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…
  ☆52Updated 10 months ago
• airman604 / schtask_now
  ☆17Updated 6 years ago
• kmkz / Sources
  Random source codes
  ☆25Updated 4 years ago
• leechristensen / GetNTLMChallenge
  Obtains a crackable hash for the current user account
  ☆23Updated 6 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆16Updated 5 years ago
• djhohnstein / SharpEdge
  C# Implementation of Get-VaultCredential
  ☆13Updated 6 years ago
• curi0usJack / psfire
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆14Updated 7 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 7 years ago