Alternatives and similar repositories for RTO-Implant

Users that are interested in RTO-Implant are comparing it to the libraries listed below

• boku7 / Nobelium-PdfDLRunAesShellcode
  A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn
  ☆101Updated 2 years ago
• fozavci / WeaponisingCSharp-Fundamentals
  Weaponising C# - Fundamentals Training Content
  ☆70Updated 4 years ago
• 0xVIC / myAPPLockerBypassSummary
  Simple APPLocker bypass summary
  ☆42Updated 6 years ago
• yoda66 / MalwareDevTalk
  ☆48Updated 5 years ago
• boku7 / winx64-InjectAllProcessesMeterpreter-Shellcode
  64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.
  ☆128Updated 2 years ago
• NVISOsecurity / brown-bags
  ☆112Updated last year
• netbiosX / AMSI-Provider
  A fake AMSI Provider which can be used for persistence.
  ☆151Updated 4 years ago
• snovvcrash / OffensivePipeline
  OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
  ☆91Updated 3 years ago
• fozavci / TradecraftDevelopment-Fundamentals
  Tradecraft Development Fundamentals
  ☆40Updated 3 years ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆67Updated last year
• wsummerhill / Malware_Weaponization
  A curated list of tools and techniques written from experience in weaponization of malware
  ☆36Updated last year
• aahmad097 / BadOutlook
  (kinda) Malicious Outlook Reader
  ☆136Updated 4 years ago
• CCob / SylantStrike
  Simple EDR implementation to demonstrate bypass
  ☆173Updated 5 years ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• ustayready / wnfexec
  WNF Code Execution Library Using C#
  ☆111Updated 5 years ago
• mantvydasb / Invoke-PowerCloud
  Deliver powershell paylods via DNS TXT via CloudFlare using PowerShell
  ☆61Updated 6 years ago
• dtrizna / DotNetInject
  Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.
  ☆37Updated 5 years ago
• S3cur3Th1sSh1t / Get-System-Techniques
  ☆95Updated 3 years ago
• N4kedTurtle / LocalDllParse
  ☆55Updated 3 years ago
• Tylous / Slides
  ☆38Updated last year
• rmdavy / HeapsOfFun
  AMSI Bypass Via the Heap
  ☆107Updated 4 years ago
• tothi / stager_libpeconv
  A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading
  ☆84Updated 2 years ago
• hexachordanu / Red-Team-Essentials
  This repo will contain some basic pentest/RT commands.
  ☆38Updated 3 years ago
• med0x2e / genxlm
  A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…
  ☆91Updated 5 years ago
• sbasu7241 / HellsGate
  Rewrote HellsGate in C# for fun and learning
  ☆86Updated 3 years ago
• PL-V / Firefox-Grabber
  Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users
  ☆42Updated 2 years ago
• PhilKeeble / AWS-RedTeam-ADLab
  ☆116Updated 4 years ago
• ZeroPointSecurity / RTOVMSetup
  ☆9Updated 3 years ago
• leoloobeek / keyring
  Proper Payload Protection Prevents Poor Performance
  ☆73Updated 2 years ago
• EncodeGroup / Gopher
  C# tool to discover low hanging fruits
  ☆94Updated 2 years ago