Alternatives and similar repositories for UnmanagedPowerShell

Users that are interested in UnmanagedPowerShell are comparing it to the libraries listed below

• cobbr / PSAmsi
  PSAmsi is a tool for auditing and defeating AMSI signatures.
  ☆398Updated 7 years ago
• danielbohannon / Invoke-CradleCrafter
  PowerShell Remote Download Cradle Generator & Obfuscator
  ☆853Updated 7 years ago
• EmpireProject / PSInject
  Inject PowerShell into any process
  ☆250Updated 6 years ago
• enigma0x3 / Misc-PowerShell-Stuff
  random powershell goodness
  ☆460Updated last year
• Sw4mpf0x / PowerLurk
  Malicious WMI Events using PowerShell
  ☆398Updated 9 years ago
• kavika13 / RemCom
  Remote Command Executor: A OSS replacement for PsExec and RunAs - or Telnet without having to install a server. Take your pick :)
  ☆366Updated 8 years ago
• RedSiege / WMImplant
  This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …
  ☆838Updated last year
• mandiant / DueDLLigence
  ☆481Updated 2 years ago
• threatexpress / metatwin
  The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…
  ☆359Updated last year
• hoangprod / AndrewSpecial
  AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
  ☆390Updated 6 years ago
• lgandx / Responder-Windows
  Responder Windows Version Beta
  ☆555Updated last year
• GhostPack / SharpDump
  SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.
  ☆667Updated 7 years ago
• fox-it / Invoke-ACLPwn
  ☆525Updated 3 years ago
• danielbohannon / Revoke-Obfuscation
  PowerShell Obfuscation Detection Framework
  ☆749Updated 2 years ago
• pwndizzle / CodeExecutionOnWindows
  A list of ways to execute code on Windows using legitimate Windows tools
  ☆309Updated 6 years ago
• itm4n / VBA-RunPE
  A VBA implementation of the RunPE technique or how to bypass application whitelisting.
  ☆814Updated 6 years ago
• HarmJ0y / DAMP
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆382Updated 6 years ago
• fullmetalcache / PowerLine
  ☆310Updated 7 years ago
• byt3bl33d3r / OffensiveDLR
  Toolbox containing research notes & PoC code for weaponizing .NET's DLR
  ☆525Updated 4 years ago
• hatRiot / token-priv
  Token Privilege Research
  ☆868Updated 8 years ago
• rvrsh3ll / Misc-Powershell-Scripts
  Random Tools
  ☆851Updated 3 years ago
• silentbreaksec / Throwback
  HTTP/S Beaconing Implant
  ☆311Updated 8 years ago
• Cn33liz / StarFighters
  A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
  ☆322Updated 8 years ago
• christophetd / spoofing-office-macro
  PoC of a VBA macro spawning a process with a spoofed parent and command line.
  ☆381Updated 5 years ago
• rasta-mouse / TikiTorch
  Process Injection
  ☆766Updated 4 years ago
• Cn33liz / MSBuildShell
  MSBuildShell, a Powershell Host running within MSBuild.exe
  ☆294Updated 6 years ago
• two06 / Inception
  Provides In-memory compilation and reflective loading of C# apps for AV evasion.
  ☆372Updated last year
• BloodHoundAD / SharpHound2
  The Old BloodHound C# Ingestor (Deprecated)
  ☆512Updated 3 years ago
• RedSiege / WMIOps
  This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
  ☆388Updated last year
• cyberark / RiskySPN
  Detect and abuse risky SPNs
  ☆266Updated 8 years ago