Alternatives and similar repositories for dpapick

Users that are interested in dpapick are comparing it to the libraries listed below

• dfirfpi / dpapilab
  Windows DPAPI laboratory
  ☆93Updated 7 years ago
• SafeBreach-Labs / SimpleBITSServer
  A simple python implementation of a BITS server.
  ☆105Updated 3 years ago
• arntsonl / calc_security_poc
  A sample of proof of concept scripts that run Calc.exe with full source code.
  ☆96Updated 11 months ago
• NetSPI / MonkeyWorks
  ☆61Updated last year
• cobbr / InsecurePowerShell
  InsecurePowerShell is PowerShell with some security features removed.
  ☆106Updated 7 years ago
• mattifestation / PoCSubjectInterfacePackage
  A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.
  ☆99Updated 7 years ago
• mis-team / dpapick
  ☆38Updated 5 years ago
• OmerYa / Named-Pipe-Sniffer
  Mario & Luigi - Tools for sniffing Windows Named Pipes communication
  ☆129Updated 8 years ago
• nccgroup / SCOMDecrypt
  SCOMDecrypt is a tool to decrypt stored RunAs credentials from SCOM servers
  ☆123Updated last year
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆138Updated 8 years ago
• GoSecure / DLLPasswordFilterImplant
  DLL Password Filter Implant with Exfiltration Capabilities
  ☆138Updated 5 years ago
• amitwaisel / Malproxy
  Proxy system calls over an RPC channel
  ☆99Updated 3 years ago
• dmaasland / mcafee-config-decrypt
  ☆60Updated 5 years ago
• obscuritylabs / PeFixup
  PE File Blessing - To continue or not to continue
  ☆87Updated 5 years ago
• palantir / exploitguard
  Documentation and supporting script sample for Windows Exploit Guard
  ☆157Updated 3 years ago
• moohax / xllpoc
  Code Exec via Excel
  ☆87Updated 8 years ago
• jackson5sec / ShimDB
  Shim database persistence (Fin7 TTP)
  ☆37Updated 5 years ago
• zacateras / sddl-parser
  Security Descriptor Definition Language (SDDL) Parser
  ☆38Updated 5 years ago
• TheWover / Manager
  Library of tools and examples for loading/bootstrapping managed code from unmanaged code in .NET
  ☆64Updated 5 years ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 3 years ago
• nccgroup / WindowsDACLEnumProject
  A collection of tools to enumerate and analyse Windows DACLs
  ☆109Updated 10 years ago
• ITAYC0HEN / SUNBURST-Cracked
  The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.
  ☆56Updated 4 years ago
• med0x2e / genxlm
  A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…
  ☆91Updated 5 years ago
• airbus-cert / cacdec
  The hidden mstsc recorder player
  ☆29Updated 5 years ago
• FuzzySecurity / BlueHatIL-2020
  BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
  ☆147Updated 5 years ago
• vletoux / TestAntivirus
  Test if an antivirus is installed via the resolution of the service virtual SID
  ☆56Updated 5 years ago
• api0cradle / Powershell-ICMP
  ☆29Updated 8 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆43Updated 4 years ago
• med0x2e / NoAmci
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆216Updated 5 years ago
• FuzzySecurity / Dendrobate
  Managed code hooking template.
  ☆133Updated 3 years ago