Alternatives and similar repositories for RedTeamHelp

Users that are interested in RedTeamHelp are comparing it to the libraries listed below

• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆118Updated last year
• ghost-ng / slinger
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆56Updated 2 months ago
• decoder-it / ChgPass
  ☆136Updated 9 months ago
• rasta-mouse / SpawnWith
  ☆109Updated 9 months ago
• Nomad0x7 / sekken-enum
  adws enumeration bof
  ☆160Updated 2 months ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆146Updated last year
• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆179Updated last month
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆161Updated last year
• FatCyclone / D-Pwn
  D/Invoke standalone shellcode runners
  ☆39Updated 2 years ago
• GeisericII / Winpacket
  Impacket pre-compiled binaries
  ☆17Updated 2 years ago
• OmriBaso / WTSImpersonator
  WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
  ☆121Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated last year
• x42en / sysplant
  Your syscall factory
  ☆126Updated 2 months ago
• xpn / CloudInject
  ☆115Updated last year
• kozmer / aad-bofs
  AzureAD beacon object files
  ☆134Updated 2 weeks ago
• MrAle98 / Sliver-PortBender
  Sliver extension performing TCP redirection tasks without performing cross-process injection.
  ☆68Updated 10 months ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆46Updated 2 years ago
• KingOfTheNOPs / Get-NetNTLM
  Internal Monologue BOF
  ☆79Updated 11 months ago
• ricardojoserf / NativeTokenImpersonate
  Impersonate Tokens using only NTAPI functions
  ☆83Updated 8 months ago
• temp43487580 / EntraPassTheCert
  tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it
  ☆127Updated 3 months ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆84Updated last year
• NVISOsecurity / cs2br-bof
  Run Cobalt Strike BOFs in Brute Ratel C4!
  ☆84Updated 7 months ago
• JumpsecLabs / WALK_WebAssembly_Lure_Krafter
  A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …
  ☆96Updated last year
• RedSiege / Chromatophore
  Utilities for obfuscating shellcode
  ☆96Updated 2 months ago
• werdhaihai / msi_lateral_mv
  Lateral Movement Bof with MSI ODBC Driver Install
  ☆138Updated 2 months ago
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆127Updated 3 years ago
• vulnableone / BypassX
  The Swiss army knife of evasion tool that bypasses AMSI, Applocker, and CLM mode simultaneously.
  ☆27Updated last year
• paranoidninja / BRC4-BOF-Artillery
  ☆137Updated last month
• xct / adopt
  Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆19Updated 3 years ago
• klezVirus / RAIWhateverTrigger
  Local SYSTEM auth trigger for relaying - X
  ☆151Updated 4 months ago