Alternatives and similar repositories for nifo

Users that are interested in nifo are comparing it to the libraries listed below

• srlabs / Certiception
  An ADCS honeypot to catch attackers in your internal network.
  ☆289Updated 11 months ago
• floesen / EventLogCrasher
  ☆188Updated last year
• MaLDAPtive / Invoke-Maldaptive
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆288Updated 9 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆123Updated 4 months ago
• AmberWolfCyber / NachoVPN
  A delicious, but malicious SSL-VPN server 🌮
  ☆227Updated 6 months ago
• logangoins / Krueger
  Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC
  ☆359Updated 4 months ago
• deepinstinct / NoFilter
  ☆299Updated 7 months ago
• secureworks / pytune
  ☆218Updated 2 months ago
• lolc2 / lolc2.github.io
  lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
  ☆208Updated last month
• JumpsecLabs / TokenSmith
  TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …
  ☆280Updated 4 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆124Updated last year
• Friends-Security / ShadowHound
  PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…
  ☆361Updated 2 weeks ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆257Updated 6 months ago
• EvanMcBroom / lsa-whisperer
  Tools for interacting with authentication packages using their individual message protocols
  ☆335Updated 2 months ago
• CrowdStrike / sccmhound
  A BloodHound collector for Microsoft Configuration Manager
  ☆320Updated 5 months ago
• CCob / DRSAT
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆237Updated 5 months ago
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆195Updated 4 months ago
• skelsec / evilrdp
  ☆299Updated 2 months ago
• MalBeacon / what-is-this-stealer
  A repository of credential stealer formats
  ☆217Updated 2 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆246Updated 6 months ago
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆144Updated 4 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆170Updated last week
• Pennyw0rth / NetExec-Lab
  Lab used for workshop and CTF
  ☆239Updated last week
• trustedsec / specula
  ☆191Updated 8 months ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆128Updated last month
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆251Updated last year
• Mayyhem / Maestro
  Abusing Azure services over C2
  ☆339Updated last week
• hackerhouse-opensource / Marble
  The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
  ☆291Updated last year
• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆203Updated 5 months ago
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆190Updated 2 weeks ago