Alternatives and similar repositories for EXEfromCER

Users that are interested in EXEfromCER are comparing it to the libraries listed below

• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆86Updated 10 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆149Updated last year
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆124Updated 6 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆124Updated 3 weeks ago
• ShutdownRepo / dcshadow
  Python alternative to Mimikatz lsadump::dcshadow
  ☆155Updated 6 months ago
• t3hbb / PanGP_Extractor
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆88Updated last year
• CroodSolutions / BeaconatorC2
  BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…
  ☆91Updated this week
• m4lwhere / profilehound
  ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …
  ☆132Updated last week
• 0xBienCuit / InfraRed-AWS
  ☆62Updated last month
• TheSleekBoyCompany / AnsibleHound
  Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph
  ☆63Updated this week
• Thunter-HackTeam / EvilentCoerce
  ☆155Updated 8 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 7 months ago
• DarkSpaceSecurity / DocEx
  APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
  ☆95Updated 9 months ago
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆128Updated 10 months ago
• 0xJs / EnumEDRs
  Enumerate active EDR's on the system
  ☆148Updated 3 months ago
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• 7hePr0fess0r / ADCSDevilCOM
  A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …
  ☆162Updated 2 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆128Updated 6 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 9 months ago
• LeighlinRamsay / GunnerC2
  ☆149Updated 3 months ago
• VirtualSamuraii / flyphish
  Deploy a phishing infrastructure on the fly.
  ☆78Updated last year
• 0xedh / dumpguard_bof
  Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.
  ☆102Updated last week
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆101Updated 8 months ago
• p0dalirius / FindUnusualSessions
  A tool to remotely detect unusual sessions opened on windows machines using RPC
  ☆118Updated 7 months ago
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆151Updated 5 months ago
• Ahaz1701 / EvilWorker
  A new AiTM attack framework — based on leveraging service workers — designed to conduct credential phishing campaigns. Thanks to its mini…
  ☆138Updated 5 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆66Updated 7 months ago
• Semperis / GoldenDMSA
  This tool exploits Golden DMSA attack against delegated Managed Service Accounts.
  ☆88Updated 5 months ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆46Updated last year
• synacktiv / IPSpinner
  IPSpinner works as a local proxy that redirects requests through external services.
  ☆112Updated 9 months ago