Alternatives and similar repositories for lnk-builder

Users that are interested in lnk-builder are comparing it to the libraries listed below

• RalfHacker / HTTPServerWithUpload
  Python3 HTTP Server with upload functionality
  ☆14Updated last year
• c3r3br4t3 / ShadowRDP
  ☆71Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆99Updated 2 years ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆87Updated 2 years ago
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆45Updated last year
• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆55Updated 2 years ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆82Updated 6 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆74Updated 2 years ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆77Updated 2 years ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆22Updated 2 years ago
• ice-wzl / wmiexec2
  wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures …
  ☆34Updated 11 months ago
• wsummerhill / DictionShellcode
  Encode shellcode into dictionary words for evasion and entropy reduction
  ☆26Updated 6 months ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆94Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆98Updated last year
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆53Updated 5 months ago
• xiosec / Terminator
  PowerShell script to terminate protected processes such as anti-malware and EDRs.
  ☆26Updated last year
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆84Updated 2 years ago
• EricEsquivel / OpsLoader
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆37Updated 8 months ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆63Updated 5 months ago
• NVISOsecurity / cs2br-bof
  Run Cobalt Strike BOFs in Brute Ratel C4!
  ☆68Updated last month
• nullsection / Sneaky-DLL-Stager
  Reasonably undetected shellcode stager and executer.
  ☆37Updated last week
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆39Updated last year
• wsummerhill / CSharp-Alt-Shellcode-Callbacks
  A collection of (even more) alternative shellcode callback methods in CSharp
  ☆74Updated 7 months ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆56Updated 3 years ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆48Updated 4 months ago
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆82Updated 7 months ago
• xforcered / BOFMask
  ☆125Updated last year
• racoten / BetterNetLoader
  A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints
  ☆87Updated 4 months ago
• mallo-m / AxiomDumper
  Lsass dumper evading (some) EDR detection
  ☆24Updated 3 months ago