Alternatives and similar repositories for Silhouette

Users that are interested in Silhouette are comparing it to the libraries listed below

• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆52Updated 9 months ago
• sidaf / moonshine
  ☆70Updated 2 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆41Updated 4 years ago
• jborean93 / dpapi-ng
  Python DPAPI NG Decryptor for non-Windows Platforms
  ☆64Updated 10 months ago
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆75Updated 3 years ago
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆38Updated 3 years ago
• mbrg / defcon30
  DEFCON30 Talk Material, References and Extra Bits
  ☆39Updated 3 years ago
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆141Updated 2 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• d3adzo / mesa
  Command and Control that uses NTP as the transport protocol.
  ☆21Updated 3 years ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆43Updated last year
• codewhitesec / SysmonEnte
  ☆74Updated 3 years ago
• 0xTriboulet / ZeroTotal
  A collection of source code, binaries, and compilation scripts designed to bypass detection
  ☆25Updated 2 years ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆70Updated last year
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆56Updated 2 years ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆124Updated last year
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆56Updated 7 months ago
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆68Updated 2 years ago
• sourcefrenchy / DEFCON-30---Exotic-Data-Exfiltration
  Slides from my talk at the Adversary Village, Defcon 30
  ☆29Updated 2 years ago
• jconwell / secret_handshake
  A prototype malware C2 channel using x509 certificates over mTLS
  ☆152Updated last year
• skelsec / asysocks
  Socks5 / Socks4 client and server library
  ☆70Updated 3 weeks ago
• peiga / DumpThatLSASS
  Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation
  ☆31Updated 3 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆79Updated last year
• FuzzySecurity / WWHF-WayWest-2022
  ☆37Updated 3 years ago
• ustayready / wnfexec
  WNF Code Execution Library Using C#
  ☆111Updated 5 years ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆58Updated 3 years ago
• jonny-jhnson / LDAPMon
  ☆45Updated 2 years ago
• jonny-jhnson / PowerParse
  PowerShell PE Parser
  ☆64Updated last year