Alternatives and similar repositories for kovterTools:

Users that are interested in kovterTools are comparing it to the libraries listed below

• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆18Updated 4 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• 1d8 / tempinject
  ☆20Updated 4 years ago
• byt3bl33d3r / herpaderping
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆19Updated 4 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆15Updated last year
• malcomvetter / CertCheck
  Programmatically access a TLS certificate chain in C++ and C#
  ☆13Updated 6 years ago
• trustedsec / inProc_Evade_Get-InjectedThread
  PoC code from blog
  ☆16Updated 5 years ago
• Stealthbits / RIDHijackingProofofConceptKJ
  RID Hijacking Proof of Concept script by Kevin Joyce
  ☆15Updated 6 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• netbiosX / CheatSheets
  Commands to perform various activities related to penetration testing and red teaming
  ☆19Updated 5 years ago
• WiredPulse / Invoke-GhostLog
  Removal of certain event logs within a Windows OS
  ☆8Updated 5 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆28Updated 6 years ago
• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆27Updated 7 years ago
• vletoux / OxidBindings
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Updated 5 years ago
• X-C3LL / wfp-reader
  Proof of concept - Covert Channel using Windows Filtering Platform (C#)
  ☆21Updated 3 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆17Updated 4 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• HuskyHacks / RustyTokenManipulation
  just manipulatin these here tokens yes sir nothing weird
  ☆22Updated 3 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 6 years ago
• waldo-irc / UPSInject
  Unamanged PS with Named Pipes
  ☆9Updated 4 years ago
• MathildeVenault / TheRestarter
  Released alongside with a talk at REcon 2023, TheRestarter is an interactive command-line tool is designed to interact with the Windows …
  ☆14Updated last year
• hotnops / mythic-sync
  A tool to sync mythic events with ghostwriter oplog.
  ☆13Updated 5 months ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆40Updated last year
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆17Updated 6 years ago
• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆26Updated 5 years ago
• Simon-AKA-Subliminal / Identify-Malicious-Internet-Users-Using-Tor
  ☆10Updated 7 years ago
• DanusMinimus / Injections
  A repository where I share my injection implemintations
  ☆29Updated 4 years ago