Alternatives and similar repositories for TLAD

Users that are interested in TLAD are comparing it to the libraries listed below

• mdsecactivebreach / SharpAltiris
  ☆25Updated 2 years ago
• redskal / malrdp-deploy
  Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible
  ☆12Updated last year
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Updated 3 years ago
• wsummerhill / IPv4Fuscation-Encrypted
  ☆19Updated last year
• sudonoodle / Aggressor-NTFY
  Cobalt Strike notifications via NTFY.
  ☆13Updated 8 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated last year
• trainr3kt / Readfile_BoF
  ☆21Updated 2 years ago
• V3ded / ToolDump-v1
  Some of my custom "tools".
  ☆23Updated 3 years ago
• xenoscr / SharpMailBOF
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆15Updated 3 years ago
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆17Updated last year
• gam4er / SneakyRun
  Some stuff for PHD2021
  ☆14Updated last week
• vysecurity / Nemesis-Download-Watcher
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆14Updated last year
• inzlain / sameuser
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Updated 2 years ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• ChoiSG / havoc2nginx
  havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…
  ☆12Updated 2 years ago
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated 10 months ago
• Adepts-Of-0xCC / SnoopyOwl
  ☆48Updated 4 years ago
• sakkis91 / SandboxPPL
  Golang PoC that sandboxes Defender (or other PPL) by setting its token integrity to Untrusted.
  ☆11Updated 3 years ago
• VirtualAlllocEx / Create_Thread_Inline_Assembly_x86
  This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly
  ☆18Updated 2 years ago
• AonCyberLabs / DUALITY
  ☆16Updated last year
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆19Updated last year
• a7t0fwa7 / DllDragon
  A simple to use single-include Windows API resolver
  ☆21Updated 10 months ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• MrDomainAdmin / LyinEagle
  Python C2 with JScript Implant
  ☆14Updated last year
• 0xRedpoll / ludus_mythic_teamserver
  Ludus role for deploying a Mythic Teamserver onto Linux servers
  ☆14Updated 2 months ago
• slemire / bof-adopt
  BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆15Updated 2 years ago