Alternatives and similar repositories for badfiles

Users that are interested in badfiles are comparing it to the libraries listed below

• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆22Updated last year
• dobin / waasa
  Windows Application Attack Surface Analyzer
  ☆24Updated last year
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆41Updated 4 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆53Updated 2 years ago
• closed-systems / strangerstrings
  A little tool to filter the stranger strings from a binary so you can analyze the good ones
  ☆52Updated 4 months ago
• AmirHoseinTangsiriNET / EventLogSilencer
  EventLogSilencer is a PowerShell script designed for disable Windows Event Logging
  ☆18Updated 2 years ago
• ZephrFish / ChunkyIngress
  Leverages B64 chunks to split files and save to clipboard
  ☆26Updated last month
• outflanknl / Training-MSOfficeOffensiveTradecraft
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆52Updated last year
• ACE-Responder / rpcfirewall-extended-telemetry
  ☆15Updated last year
• MHaggis / MSIXBuilder
  MSIX Building Made Easy for Defenders
  ☆59Updated 5 months ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆28Updated 2 years ago
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆43Updated 2 years ago
• antman1p / freyja
  Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.
  ☆44Updated last year
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆58Updated 3 years ago
• sleeptok3n / RoleCrawl
  ☆21Updated 4 months ago
• cyb3rmik3 / Hunting-Lists
  A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
  ☆33Updated last year
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆19Updated 8 months ago
• QueenSquishy / Zombie
  General Content
  ☆25Updated last month
• brandonscholet / HashKitty
  HashKitty is a user-friendly cross-platform Python wrapper for Hashcat designed to provide an easy password cracking experience for both …
  ☆42Updated last year
• GhostManager / mythic_sync
  Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+
  ☆21Updated 5 months ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆27Updated 10 months ago
• magisterquis / lutlol
  Living Under the Land on Linux ~ BSides Belfast 2025
  ☆37Updated 2 months ago
• elementalsouls / DumpLSASS
  ☆33Updated last year
• vysecurity / IPFilter
  IP address filter by City
  ☆12Updated last year
• CompassSecurity / conkeyscan
  A Pentesters Confluence Keyword Scanner
  ☆17Updated last year
• spyr0-sec / AutomatedBadLab
  PowerShell scripts to create sandboxed or vulnerable environments using HyperV and AutomatedLab
  ☆92Updated 6 months ago
• sourcefrenchy / DEFCON-30---Exotic-Data-Exfiltration
  Slides from my talk at the Adversary Village, Defcon 30
  ☆29Updated 3 years ago
• nccgroup / mimikatz-detector-busylight
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆20Updated 3 years ago
• xyplex3 / RedTeamCoin
  Red Team Coin for crypto-mining operations.
  ☆22Updated 2 weeks ago