Alternatives and similar repositories for Silhouette

Users that are interested in Silhouette are comparing it to the libraries listed below

• BinaryDefense / GhidraRustDependenciesExtractor
  Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binary
  ☆29Updated 2 years ago
• 0xTriboulet / ZeroTotal
  A collection of source code, binaries, and compilation scripts designed to bypass detection
  ☆25Updated 2 years ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆49Updated 5 months ago
• sidaf / moonshine
  ☆69Updated last year
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆141Updated 2 years ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆124Updated 2 years ago
• tijme / amd-ryzen-master-driver-v17-exploit
  Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
  ☆145Updated 2 years ago
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆74Updated 3 years ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆122Updated 9 months ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆109Updated 4 years ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆56Updated 2 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆69Updated last year
• CERTCC / privesc
  Process Monitor filter for finding privilege escalation vulnerabilities on Windows
  ☆79Updated 4 years ago
• peiga / DumpThatLSASS
  Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation
  ☆31Updated 2 years ago
• mbrg / defcon30
  DEFCON30 Talk Material, References and Extra Bits
  ☆39Updated 2 years ago
• netspooky / kimagure
  ☆44Updated 4 years ago
• nccgroup / Change-Lockscreen
  Offensive tool to trigger network authentications as SYSTEM
  ☆142Updated 3 years ago
• airbus-cert / minusone
  Powershell Linter
  ☆61Updated this week
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆38Updated 2 years ago
• ustayready / wnfexec
  WNF Code Execution Library Using C#
  ☆111Updated 5 years ago
• jfmaes / AmsiHooker
  Hookers are cooler than patches.
  ☆169Updated 3 years ago
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆76Updated last year
• eversinc33 / BouncyGate
  Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).
  ☆183Updated 2 years ago
• codewhitesec / SysmonEnte
  ☆75Updated 2 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆38Updated 3 years ago
• daddycocoaman / azbelt
  AAD related enumeration in Nim
  ☆129Updated last year
• mtth-bfft / evtq
  Windows eventlog formatting, live fetching and querying utility in C
  ☆20Updated 5 years ago
• y11en / FOLIAGE
  Experiment on reproducing Obfuscate & Sleep
  ☆145Updated 4 years ago
• jdu2600 / Get-InjectedThreadEx
  Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2
  ☆41Updated last year