Alternatives and similar repositories for AmsiProvider:

Users that are interested in AmsiProvider are comparing it to the libraries listed below

• ToweringDragoon / SACL_Scanner
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆35Updated last month
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆38Updated 8 months ago
• EspressoCake / ADIDNS_Parser
  Parser and reconciliation tooling for large Active Directory environments.
  ☆30Updated last month
• t94j0 / sddl_py
  Parse SDDL strings
  ☆35Updated 11 months ago
• p0dalirius / winacl
  winacl, a cross platforms Go library to work with ntSecurityDescriptor.
  ☆29Updated last month
• JonasBK / Powershell
  ☆34Updated last month
• Allevon412 / SyscallTempering
  ☆28Updated 8 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆31Updated 10 months ago
• decoder-it / Troopers24
  ☆41Updated 8 months ago
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆30Updated 2 weeks ago
• p0dalirius / DescribeNTSecurityDescriptor
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure.
  ☆38Updated last month
• grayhatkiller / SharpExShell
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆69Updated 10 months ago
• jsecu / ModTask
  ☆52Updated 3 months ago
• rasta-mouse / KerbApp
  ☆28Updated 9 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated 8 months ago
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆75Updated last year
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆62Updated last month
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆44Updated 2 months ago
• kapellos / VladimiRED
  ☆17Updated 3 months ago
• nickvourd / Rocabella
  Sniffing files generator
  ☆55Updated last month
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆62Updated last year
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆35Updated last year
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆38Updated last year
• OtterHacker / ShareFouine
  ☆49Updated 4 months ago
• Leo4j / KeyCredentialLink
  Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute
  ☆20Updated 9 months ago
• OtterHacker / AWSRedirector
  ☆54Updated last month
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆55Updated 9 months ago
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆36Updated 6 months ago
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆38Updated 2 months ago