Alternatives and similar repositories for Windows_Hunt

Users that are interested in Windows_Hunt are comparing it to the libraries listed below

• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 3 years ago
• BC-SECURITY / Invoke-SocksProxy
  Socks proxy server using powershell. Supports local and reverse connections for pivoting.
  ☆11Updated 4 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 5 years ago
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆25Updated 3 years ago
• 0xthirteen / CleanRunMRU
  Get or remove RunMRU values
  ☆59Updated 5 years ago
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 3 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 3 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆30Updated 4 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 3 years ago
• ZephrFish / SandboxSpy
  Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…
  ☆21Updated 3 weeks ago
• jnqpblc / SharpReg
  SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.
  ☆29Updated 5 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated last year
• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆28Updated 6 years ago
• mobdk / WinBoost
  Execute Mimikatz with different technique
  ☆51Updated 3 years ago
• robomotic / invoke-antivm
  powershell tool for VM evasion
  ☆42Updated 4 years ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 3 years ago
• threatexpress / cobaltstrike_payload_generator
  Quickly generate every payload type for each listener and optionally host via HTTP.
  ☆22Updated 4 years ago
• aaaddress1 / xlsGen
  (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.
  ☆43Updated 4 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆28Updated 6 years ago
• snovvcrash / peas
  Modified version of PEAS client for offensive operations
  ☆42Updated 2 years ago
• mansk1es / Caboom
  A malicious .cab creation tool for CVE-2021-40444
  ☆13Updated 4 years ago
• jfmaes / Ansible-Cobalt-Strike
  An Ansible role to install cobalt-strike
  ☆16Updated 5 years ago
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆47Updated 4 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 4 years ago
• hausec / Set-RBCDBytes
  ☆18Updated 4 years ago
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆19Updated 2 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated 2 years ago
• jfmaes / Clippi-B
  ☆36Updated 5 years ago
• lapolis / palinka_c2
  Just another useless C2 occupying space in some HDD somewhere.
  ☆20Updated 2 years ago
• tothi / PowerLessShell
  Run PowerShell command without invoking powershell.exe
  ☆35Updated 3 years ago