Alternatives and similar repositories for OffensiveLua

Users that are interested in OffensiveLua are comparing it to the libraries listed below

• hackerhouse-opensource / Artillery
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆176Updated last year
• floesen / EventLogCrasher
  ☆189Updated last year
• mandiant / msi-search
  ☆282Updated last year
• rtecCyberSec / Packer_Development
  Slides & Code snippets for a workshop held @ x33fcon 2024
  ☆260Updated last year
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆135Updated last year
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆201Updated last year
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆184Updated last year
• trevorsaudi / Mshikaki
  A shellcode injection tool showcasing various process injection techniques
  ☆137Updated last year
• skelsec / evilrdp
  ☆299Updated 3 months ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆161Updated 6 months ago
• ricardojoserf / WhoamiAlternatives
  Different methods to get current username without using whoami
  ☆177Updated last year
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆204Updated last year
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆189Updated last year
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆193Updated 3 months ago
• rad9800 / byor
  ☆135Updated 2 weeks ago
• ZERODETECTION / MSC_Dropper
  ☆177Updated 10 months ago
• decoder-it / TokenStealer
  ☆164Updated last year
• kleiton0x00 / Proxy-DLL-Loads
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆348Updated 4 months ago
• icyguider / LatLoader
  PoC module to demonstrate automated lateral movement with the Havoc C2 framework.
  ☆303Updated last year
• SaadAhla / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆145Updated last year
• RePRGM / Nimperiments
  Various one-off pentesting projects written in Nim. Updates happen on a whim.
  ☆158Updated this week
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆196Updated 3 months ago
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆268Updated 9 months ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆141Updated 7 months ago
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆292Updated last year
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆314Updated last year
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆153Updated last year
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆265Updated 9 months ago
• nettitude / Aladdin
  ☆221Updated last year