Alternatives and similar repositories for WinPIT

Users that are interested in WinPIT are comparing it to the libraries listed below

• ashr / netrefject
  Inject .Net payloads into other .Net assemblies on disk
  ☆61Updated 5 years ago
• two06 / AMSI_Handler
  Automate AV evasion by calling AMSI
  ☆88Updated 2 years ago
• vletoux / OxidBindings
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Updated 5 years ago
• FuzzySecurity / Driver-Template
  Bare template for a Kernel Mode Driver
  ☆51Updated 5 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• limbenjamin / LogServiceCrash
  POC code to crash Windows Event Logger Service
  ☆27Updated 4 years ago
• byt3bl33d3r / Kaliya
  A cross-platform stager for SILENTTRINITY (https://github.com/byt3bl33d3r/SILENTTRINITY)
  ☆25Updated 5 years ago
• cobbr / InsecurePowerShellHost
  InsecurePowerShellHost is a .NET Core host process for InsecurePowerShell, a version of PowerShell Core v6.0.0 with key security features…
  ☆31Updated 7 years ago
• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• slyd0g / SK8PARK
  Python 3 server used to control SK8RAT implant
  ☆36Updated 4 years ago
• DamonMohammadbagher / NativePayload_Tinjection
  Remote Thread Injection by C# + Delegate Techniques
  ☆12Updated 2 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆17Updated 6 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆17Updated 6 years ago
• 0xbadjuju / TellMeYourSecrets
  A C# DLL to Dump LSA Secrets
  ☆58Updated 7 years ago
• rvrsh3ll / MSSQLUDPScanner
  Discover MSSQL Instances via UDP Scanning
  ☆25Updated 6 years ago
• TheWover / ModuleMonitor
  Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…
  ☆41Updated 6 years ago
• b4rtik / SharpLoadImage
  Hide .Net assembly into png images
  ☆36Updated 5 years ago
• AltF5 / CSharp-CmdLineHelper-Parser
  A "no frills" 1 class-only, C# .NET command line parser with support for - and / args, switches only, and Name : Values
  ☆33Updated last year
• perturbed-platypus / UEFIWriteCSharp
  ☆41Updated 5 years ago
• antman1p / SharpProcEnum
  .NET tool for enumeration processes and dumping memory.
  ☆56Updated 6 years ago
• checkymander / CoreSploit
  Initial Commit of Coresploit
  ☆56Updated 3 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆28Updated 5 years ago
• ceramicskate0 / AddReferenceDotRedTeam
  A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…
  ☆17Updated 5 years ago
• checkymander / MemScan
  Quick Proof of Concept for reading a processes memory and searching for a specific string.
  ☆10Updated 6 years ago
• fullmetalcache / CsharpMMNiceness
  Files for generating a C# source file that allows for memory-mapping "niceness" and then executing said "niceness"
  ☆31Updated 6 years ago
• rasta-mouse / AsyncNamedPipes
  Send and receive messages over Named Pipes asynchronously.
  ☆39Updated 3 years ago
• FSecureLABS / SharpGPO-RemoteAccessPolicies
  A C# tool for enumerating remote access policies through group policy.
  ☆73Updated 6 years ago
• NotMedic / SocksLauncher
  ☆14Updated 5 years ago
• XaFF-XaFF / AMSI-Bypass
  Rasta's mouse AMSI patch but with function that makes it undetectable.
  ☆13Updated 4 years ago
• TheWover / Manager
  Library of tools and examples for loading/bootstrapping managed code from unmanaged code in .NET
  ☆63Updated 5 years ago