Alternatives and similar repositories for dpapick:

Users that are interested in dpapick are comparing it to the libraries listed below

• dfirfpi / dpapilab
  Windows DPAPI laboratory
  ☆87Updated 6 years ago
• SafeBreach-Labs / SimpleBITSServer
  A simple python implementation of a BITS server.
  ☆104Updated 2 years ago
• OmerYa / Named-Pipe-Sniffer
  Mario & Luigi - Tools for sniffing Windows Named Pipes communication
  ☆129Updated 8 years ago
• GoSecure / DLLPasswordFilterImplant
  DLL Password Filter Implant with Exfiltration Capabilities
  ☆134Updated 4 years ago
• cobbr / InsecurePowerShell
  InsecurePowerShell is PowerShell with some security features removed.
  ☆102Updated 7 years ago
• arntsonl / calc_security_poc
  A sample of proof of concept scripts that run Calc.exe with full source code.
  ☆93Updated 4 months ago
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆133Updated 7 years ago
• palantir / exploitguard
  Documentation and supporting script sample for Windows Exploit Guard
  ☆148Updated 3 years ago
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆51Updated last year
• obscuritylabs / PeFixup
  PE File Blessing - To continue or not to continue
  ☆86Updated 5 years ago
• endgameinc / ClrGuard
  ☆213Updated 6 years ago
• mis-team / dpapick
  ☆34Updated 4 years ago
• moohax / xllpoc
  Code Exec via Excel
  ☆85Updated 7 years ago
• airbus-cert / cacdec
  The hidden mstsc recorder player
  ☆28Updated 4 years ago
• NetSPI / MonkeyWorks
  ☆61Updated last year
• vletoux / TestAntivirus
  Test if an antivirus is installed via the resolution of the service virtual SID
  ☆55Updated 4 years ago
• dmaasland / mcafee-config-decrypt
  ☆60Updated 4 years ago
• dirkjanm / ROADtoken
  ☆80Updated 4 years ago
• homjxi0e / ReaCOM
  ReaCOM has got a lot of tools to use and is related to component object model
  ☆73Updated 4 years ago
• mattifestation / PoCSubjectInterfacePackage
  A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.
  ☆93Updated 7 years ago
• med0x2e / NoAmci
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆213Updated 4 years ago
• williballenthin / python-sdb
  Pure Python parser for Application Compatibility Shim Databases (.sdb files)
  ☆107Updated 3 years ago
• tyranid / ExploitDotNetDCOM
  A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.
  ☆87Updated 10 years ago
• matterpreter / Shhmon
  Neutering Sysmon via driver unload
  ☆224Updated 2 years ago
• jackson5sec / ShimDB
  Shim database persistence (Fin7 TTP)
  ☆36Updated 4 years ago
• n0pe-sled / WMI-Persistence
  ☆78Updated 7 years ago
• Paul-Tew / lifer
  Windows link file (shortcuts) examiner
  ☆67Updated 7 months ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 2 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆43Updated 3 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆82Updated last year