Alternatives and similar repositories for lnk-builder:

Users that are interested in lnk-builder are comparing it to the libraries listed below

• ice-wzl / wmiexec2
  wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures …
  ☆33Updated 8 months ago
• xiosec / Terminator
  PowerShell script to terminate protected processes such as anti-malware and EDRs.
  ☆26Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆98Updated 2 years ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆79Updated last year
• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆46Updated last year
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆76Updated last year
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆81Updated 2 years ago
• Octoberfest7 / CS_Uploads_Tracker
  Aggressor script add-in for CobaltStrike to track file uploads
  ☆36Updated 2 years ago
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆42Updated 10 months ago
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆80Updated last year
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆92Updated last year
• VirtualAlllocEx / DSC_SVC_REMOTE
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆51Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆97Updated last year
• kymb0 / Stealth_shellcode_runners
  ☆55Updated 10 months ago
• rasta-mouse / SCMUACBypass
  ☆95Updated last year
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 3 years ago
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆106Updated last year
• exploitblizzard / Syscall-Example
  Using syscall to load shellcode, Evasion techniques
  ☆27Updated 3 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆48Updated last year
• NVISOsecurity / cs2br-bof
  Run Cobalt Strike BOFs in Brute Ratel C4!
  ☆61Updated last month
• kh4sh3i / ProxyShell
  CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability
  ☆36Updated 2 years ago
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆33Updated 7 months ago
• wsummerhill / CSharp-Alt-Shellcode-Callbacks
  A collection of (even more) alternative shellcode callback methods in CSharp
  ☆69Updated 3 months ago
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆64Updated 2 years ago
• LuxNoBulIshit / Smug_Fu3k
  ☆51Updated 2 years ago
• c3r3br4t3 / ShadowRDP
  ☆63Updated last year
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆73Updated 2 years ago
• racoten / BetterNetLoader
  A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints
  ☆74Updated last month
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆83Updated 2 years ago