Alternatives and similar repositories for dragon:

Users that are interested in dragon are comparing it to the libraries listed below

• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 7 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• 3gstudent / SCTPersistence
  Create COM Objects backed by Scripts, not DLLs
  ☆9Updated 7 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆16Updated 6 years ago
• ceramicskate0 / AddReferenceDotRedTeam
  A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…
  ☆17Updated 4 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆17Updated 5 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆15Updated 4 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• Arno0x / MultibyteEncodedShellcode
  An AV evasion technique using multibyte xor encoding of shellcode
  ☆8Updated 8 years ago
• rmdavy / AmsiPEBWalkVBAx64
  ☆14Updated 4 years ago
• markgamache / GPOwn
  Do the unexpected with AD GPO processing
  ☆9Updated 5 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 6 years ago
• homjxi0e / Privilege-escalation-Mafia
  Windows privilege escalation Mafia is a framework provides all resources needed for privilege escalation beginners
  ☆12Updated 3 years ago
• jymcheong / aptc
  Automated Payload Test Controller
  ☆9Updated 7 years ago
• curi0usJack / psfire
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆14Updated 7 years ago
• shantanu561993 / heroku-reverse-proxy
  Spin up a reverse proxy quickly on Heroku
  ☆13Updated 4 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆23Updated 4 years ago
• cys3c / Siofra
  DLL hijacking vulnerability scanner and PE infector tool
  ☆17Updated 7 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago
• singe / wpa3_brute
  Simple mods to wpa_supplicant to allow more efficient online bruting
  ☆18Updated 5 years ago
• ThunderGunExpress / CustomStager
  ☆16Updated 6 years ago
• lightfaith / locasploit
  Local enumeration and exploitation framework.
  ☆18Updated 7 years ago
• limbenjamin / LogServiceCrash
  POC code to crash Windows Event Logger Service
  ☆26Updated 4 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 7 years ago
• Simon-AKA-Subliminal / Identify-Malicious-Internet-Users-Using-Tor
  ☆10Updated 7 years ago
• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆33Updated 5 years ago