Alternatives and similar repositories for browservoyage

Users that are interested in browservoyage are comparing it to the libraries listed below

• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆142Updated 8 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆165Updated last year
• safedv / Rustic64Shell
  A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.
  ☆80Updated 5 months ago
• Wh04m1001 / CVE-2024-20656
  ☆136Updated last year
• rweijnen / createdump
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆149Updated last year
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
  ☆37Updated 9 months ago
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆116Updated 2 months ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆36Updated last year
• Maldev-Academy / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆51Updated 4 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated last month
• djackreuter / rustlualoader
  Shellcode loader that executes embedded Lua from Rust.
  ☆126Updated 9 months ago
• 0xJs / EnumEDRs
  Enumerate active EDR's on the system
  ☆107Updated last month
• 0xv1n / RemoteSessionEnum
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆119Updated last year
• bruno-1337 / SeDebugPrivilege-Exploit
  Simple C++ PoC of SeDebugPrivilege Privesc
  ☆25Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆65Updated last year
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆56Updated 7 months ago
• boku7 / patchwerk
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆188Updated 7 months ago
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆58Updated 8 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆89Updated last year
• CodeXTF2 / WebcamBOF
  Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options
  ☆141Updated 6 months ago
• flostyen / windows-persistence
  Windows Persistence IT-Security
  ☆105Updated 6 months ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆113Updated last year
• Network-Sec / CVE-2025-21420-PoC
  We found a way to DLL sideload with cleanmgr.exe
  ☆94Updated 7 months ago
• Teach2Breach / pool_party_rs
  remote process injections using pool party techniques
  ☆66Updated 2 months ago
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆39Updated 6 months ago
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆120Updated 9 months ago
• dmcxblue / calc_poc
  A repository holding Proof of Concepts for executing the calculator application via different file formats
  ☆41Updated last year
• m8sec / Dispatch
  Evasive Payload Delivery Server & C2 Redirector
  ☆104Updated last month
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆185Updated 9 months ago
• nixpal / shellsilo
  SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…
  ☆141Updated last month