Alternatives and similar repositories for AmsiProvider

Users that are interested in AmsiProvider are comparing it to the libraries listed below

• EspressoCake / ADIDNS_Parser
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Updated 2 months ago
• decoder-it / Troopers24
  ☆41Updated 10 months ago
• ToweringDragoon / SACL_Scanner
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆38Updated 3 months ago
• OtterHacker / ShareFouine
  ☆50Updated 6 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated 10 months ago
• ibaiC / FriendlyFireBOF
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆47Updated last month
• grayhatkiller / SharpExShell
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆70Updated last year
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆46Updated 4 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 6 months ago
• FalconForceTeam / reply-url-brute
  Tool to enumerate unregistered reply URLs for single and multitenant apps in Azure
  ☆15Updated 3 months ago
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆76Updated last year
• slygoo / pssrecon
  ☆22Updated 7 months ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆40Updated last year
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆31Updated 2 weeks ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆38Updated 9 months ago
• TheManticoreProject / DescribeNTSecurityDescriptor
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
  ☆40Updated last month
• TheManticoreProject / winacl
  A cross platform Go library to work with Windows Security Descriptors
  ☆31Updated last month
• rasta-mouse / KerbApp
  ☆28Updated 11 months ago
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆40Updated last month
• HackmichNet / SharpAzToken
  ☆61Updated last year
• Allevon412 / SyscallTempering
  ☆28Updated 9 months ago
• t94j0 / sddl_py
  Parse SDDL strings
  ☆35Updated last year
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆62Updated last year
• safedv / GPOAnalyzer
  GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.
  ☆27Updated 11 months ago
• Leo4j / KeyCredentialLink
  Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute
  ☆21Updated 11 months ago
• dmcxblue / AzureFunctionRedirector
  ☆44Updated last month
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆65Updated 2 months ago
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆30Updated 2 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆47Updated 4 months ago