Alternatives and similar repositories for TradecraftImrprovement

Users that are interested in TradecraftImrprovement are comparing it to the libraries listed below

• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated last year
• eversinc33 / UnXorStringsNet
  Deobfuscation of XorStringsNet
  ☆14Updated 7 months ago
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 3 years ago
• gerbsec / SmokeyObfuscator
  Rewrite to fit my needs
  ☆28Updated 10 months ago
• OffenseTeacher / Steganim
  ☆48Updated last year
• dmcxblue / NtCreateUserProcessBOF
  An Aggressor Script that utilizes NtCreateUserProcess to run binaries
  ☆29Updated 4 months ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆26Updated last year
• zimnyaa / inmembof.py
  A small example of loading BOFs in Python with pure reflection
  ☆19Updated 2 years ago
• HulkOperator / CallStackSpoofer
  ☆31Updated 5 months ago
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆31Updated last year
• hlldz / misc
  miscellaneous codes
  ☆35Updated last year
• rasta-mouse / KerbApp
  ☆29Updated last year
• OtterHacker / Cerbere
  ☆48Updated 2 years ago
• Hackcraft-Labs / SharpShares
  Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
  ☆33Updated last year
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆32Updated last month
• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆40Updated 7 months ago
• cyndicatelabs / brc4_profile_maker
  An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.
  ☆23Updated 2 weeks ago
• b4r0nd3l4b1rr4 / Teams-CS-Notifier
  ☆15Updated 2 years ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• Offensive-Panda / WPM-MAJIC-ENTRY-POINT-INJECTION
  This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…
  ☆16Updated 7 months ago
• N4kedTurtle / SharpTeamsDump
  Dump Teams conversations
  ☆19Updated 3 years ago
• Allevon412 / BreadManModuleStomping
  ☆43Updated last year
• Tylous / Dent
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆14Updated 2 years ago
• Teach2Breach / rpeloader
  use python on windows with full submodule support without installation
  ☆28Updated 4 months ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 6 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated 10 months ago
• susMdT / fictional-invention
  idk man this was the default github name
  ☆35Updated 2 years ago
• SaadAhla / APTmulate
  This repository focuses on replicating the behavioral patterns observed in well-documented APT campaigns.
  ☆11Updated 3 weeks ago
• nbaertsch / PoolProxy
  Proxy function calls through the thread pool with ease
  ☆28Updated 3 months ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year