Alternatives and similar repositories for Windows_Hunt

Users that are interested in Windows_Hunt are comparing it to the libraries listed below

• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆29Updated 6 years ago
• robomotic / invoke-antivm
  powershell tool for VM evasion
  ☆42Updated 5 years ago
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆25Updated 3 years ago
• threatexpress / cobaltstrike_payload_generator
  Quickly generate every payload type for each listener and optionally host via HTTP.
  ☆22Updated 4 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 5 years ago
• jfmaes / Ansible-Cobalt-Strike
  An Ansible role to install cobalt-strike
  ☆16Updated 5 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆31Updated 4 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 3 years ago
• 0xthirteen / CleanRunMRU
  Get or remove RunMRU values
  ☆59Updated 5 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆22Updated 2 years ago
• jnqpblc / SharpReg
  SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.
  ☆29Updated 5 years ago
• BC-SECURITY / Invoke-SocksProxy
  Socks proxy server using powershell. Supports local and reverse connections for pivoting.
  ☆11Updated 5 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated last year
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆37Updated 3 years ago
• s0lst1c3 / SharpFinder
  ☆33Updated 5 years ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 3 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 4 years ago
• ZephrFish / SandboxSpy
  Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…
  ☆21Updated 2 months ago
• mobdk / WinBoost
  Execute Mimikatz with different technique
  ☆51Updated 3 years ago
• 0xvm / csharp_reverse_shell
  c# reverse shell poc
  ☆27Updated 6 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 3 years ago
• zux0x3a / TChopper
  conduct lateral movement attack by leveraging unfiltered services display name to smuggle binaries as chunks into the target machine
  ☆55Updated 4 years ago
• snovvcrash / peas
  Modified version of PEAS client for offensive operations
  ☆42Updated 2 years ago
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 3 years ago
• wsummerhill / IPv4Fuscation-Encrypted
  ☆20Updated last year
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆28Updated 6 years ago
• aaaddress1 / xlsGen
  (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.
  ☆43Updated 4 years ago
• nyxgeek / rpcfiend
  Use rpc null sessions to retrieve machine list, domain admin list, domain controllers
  ☆14Updated 2 years ago
• d3adzo / shepard
  In progress persistent download/upload/execution tool using Windows BITS.
  ☆42Updated 4 years ago
• r3motecontrol / Sharp-Suite-CompiledBinaries
  Compiled Binaries for Sharp Suite
  ☆15Updated 5 years ago