Alternatives and similar repositories for dragon:

Users that are interested in dragon are comparing it to the libraries listed below

• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆16Updated 5 years ago
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆16Updated 6 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• rmdavy / AmsiPEBWalkVBAx64
  ☆14Updated 4 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• rmdavy / VBAFunctionPointers
  ☆19Updated 4 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• py7hagoras / OfficeMacro64
  This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…
  ☆20Updated 5 years ago
• ceramicskate0 / AddReferenceDotRedTeam
  A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…
  ☆17Updated 4 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆15Updated 4 years ago
• hotnops / mythic-sync
  A tool to sync mythic events with ghostwriter oplog.
  ☆12Updated 3 months ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 7 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago
• cys3c / Siofra
  DLL hijacking vulnerability scanner and PE infector tool
  ☆17Updated 7 years ago
• RedyOpsResearchLabs / CVE-2020-7283-McAfee-Total-Protection-MTP-16.0.R26-EoP
  ☆13Updated 4 years ago
• 3gstudent / SCTPersistence
  Create COM Objects backed by Scripts, not DLLs
  ☆9Updated 7 years ago
• audibleblink / davil
  leaking net-ntlm with webdav
  ☆24Updated 3 years ago
• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆33Updated 5 years ago
• trustedsec / inProc_Evade_Get-InjectedThread
  PoC code from blog
  ☆16Updated 4 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆23Updated 4 years ago
• o1mate / DLLProx
  Automatic DLL comment link generation and explaination of the DLL Proxying techniques
  ☆10Updated 3 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 4 years ago
• williamknows / CodeCoverageModuleStomping
  ☆11Updated 5 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆17Updated 6 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago
• ahmedkhlief / Scripts
  all published scripts devloped by ahmed khlief
  ☆20Updated 4 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆18Updated 3 years ago
• ChaitanyaHaritash / NIM-Scripts
  ☆18Updated 3 years ago