Alternatives and similar repositories for TradecraftDevelopment-Fundamentals

Users that are interested in TradecraftDevelopment-Fundamentals are comparing it to the libraries listed below

• fozavci / WeaponisingCSharp-Fundamentals

  View on GitHub
  Weaponising C# - Fundamentals Training Content
  ☆70May 11, 2021Updated 4 years ago
• fozavci / ta505plus

  View on GitHub
  TA505+ Adversary Simulation
  ☆64Nov 30, 2020Updated 5 years ago
• xforcered / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆53Dec 21, 2021Updated 4 years ago
• jfmaes / CSharpReflectionWorkshop

  View on GitHub
  The repository that complements the From zero to hero: creating a reflective loader in C# workshop
  ☆39Oct 6, 2021Updated 4 years ago
• jsecu / BOF-pack-1

  View on GitHub
  A care package of useful bofs for red team engagments
  ☆55Dec 6, 2024Updated last year
• sakkis91 / SandboxPPL

  View on GitHub
  Golang PoC that sandboxes Defender (or other PPL) by setting its token integrity to Untrusted.
  ☆12May 28, 2025Updated 8 months ago
• 0xsp-SRD / callback_injection-Csharp

  View on GitHub
  this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…
  ☆88Jun 24, 2022Updated 3 years ago
• ahhh / GoRedDeath

  View on GitHub
  Experimenting with destructive file attacks in Go
  ☆19May 20, 2019Updated 6 years ago
• thesnoom / extps-cobalt-strike-bof

  View on GitHub
  Extended Process List (Search functionality)
  ☆29Jan 23, 2021Updated 5 years ago
• moloch-- / wire-transfer

  View on GitHub
  Encode binary as English text over HTTP(s)
  ☆30Aug 25, 2023Updated 2 years ago
• Tylous / Slides

  View on GitHub
  ☆39Apr 23, 2024Updated last year
• warhorse / ansible-role-cobaltstrike-docker

  View on GitHub
  Ansible Cobalt Strike (Docker)
  ☆15Jan 8, 2022Updated 4 years ago
• dcsync / aggressor

  View on GitHub
  aggressor and pycobalt scripts.
  ☆18Nov 17, 2020Updated 5 years ago
• pwn1sher / WMEye

  View on GitHub
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆369Dec 24, 2021Updated 4 years ago
• NVISOsecurity / brown-bags

  View on GitHub
  ☆112Jul 24, 2023Updated 2 years ago
• NetSPI / DAFT

  View on GitHub
  DAFT: Database Audit Framework & Toolkit
  ☆182Aug 11, 2021Updated 4 years ago
• Adepts-Of-0xCC / SnoopyOwl

  View on GitHub
  ☆48May 12, 2021Updated 4 years ago
• Helixo32 / SimpleEDR

  View on GitHub
  Simple EDR that injects a DLL into a process to place a hook on specific Windows API
  ☆97Aug 27, 2023Updated 2 years ago
• EspressoCake / DynamicTabRename

  View on GitHub
  CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.
  ☆25May 23, 2022Updated 3 years ago
• snovvcrash / OffensivePipeline

  View on GitHub
  OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
  ☆90Mar 2, 2022Updated 3 years ago
• audibleblink / getsystem

  View on GitHub
  Small utility package for manipulating Windows process tokens
  ☆26Apr 26, 2022Updated 3 years ago
• Allevon412 / ReflectiveDLLInjector

  View on GitHub
  This program is used to perform reflective DLL Injection to a remote process specified by the user.
  ☆65Jul 11, 2023Updated 2 years ago
• jfmaes / Emulation-Workshop

  View on GitHub
  The repository accompanying the Buer Emulation workshop
  ☆23Aug 18, 2021Updated 4 years ago
• EspressoCake / Needle_Sift_BOF

  View on GitHub
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Sep 27, 2021Updated 4 years ago
• xfox64x / AppDomainExample

  View on GitHub
  A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.
  ☆29Nov 25, 2019Updated 6 years ago
• dosxuz / DefenderStop

  View on GitHub
  Stop Defender Service using C# via Token Impersonation
  ☆170Jan 30, 2022Updated 4 years ago
• kyleavery / inject-assembly

  View on GitHub
  Inject .NET assemblies into an existing process
  ☆508Jan 19, 2022Updated 4 years ago
• RedSiege / EDD

  View on GitHub
  Enumerate Domain Data
  ☆335Sep 13, 2023Updated 2 years ago
• mgeeky / Stracciatella

  View on GitHub
  OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…
  ☆538Sep 18, 2022Updated 3 years ago
• 0xsp-SRD / PAS-mini-c2c-

  View on GitHub
  ☆12Oct 9, 2022Updated 3 years ago
• LuemmelSec / impacket

  View on GitHub
  Impacket is a collection of Python classes for working with network protocols.
  ☆10Jun 15, 2023Updated 2 years ago
• s0lst1c3 / dropengine

  View on GitHub
  DropEngine provides a malleable framework for creating shellcode runners, allowing operators to choose from a selection of components and…
  ☆214Nov 26, 2020Updated 5 years ago
• paragonsec / HiveNightmare-Checker

  View on GitHub
  A PowerShell script that checks for dangerous ACLs on system hives and shadows
  ☆28Jul 21, 2021Updated 4 years ago
• secureworks / TokenMan

  View on GitHub
  ☆104Oct 27, 2022Updated 3 years ago
• Apr4h / GetInjectedThreads

  View on GitHub
  C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
  ☆54Jul 11, 2021Updated 4 years ago
• Sq00ky / RunAsPasswd

  View on GitHub
  A RunAs clone with the ability to specify the password as an argument.
  ☆112Jul 2, 2023Updated 2 years ago
• bohops / DynamicDotNet

  View on GitHub
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆146May 18, 2024Updated last year
• oldboy21 / JayFinder

  View on GitHub
  Find DLLs with RWX section
  ☆80Jul 3, 2023Updated 2 years ago
• aus / proxyplease

  View on GitHub
  Cross-platform proxy selection with optional native authentication negotiation
  ☆53Feb 25, 2023Updated 2 years ago