Alternatives and similar repositories for WMIPersistence

Users that are interested in WMIPersistence are comparing it to the libraries listed below

• djhohnstein / CSharpSetThreadContext
  C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread
  ☆119Updated 6 years ago
• rvrsh3ll / SharpExcel4-DCOM
  Port of Invoke-Excel4DCOM
  ☆105Updated 5 years ago
• airzero24 / WMIReg
  PoC to interact with local/remote registry hives through WMI
  ☆86Updated 5 years ago
• jnqpblc / SharpTask
  SharpTask is a simple code set to interact with the Task Scheduler service api and is compatible with Cobalt Strike.
  ☆91Updated 4 years ago
• mdsecactivebreach / Browser-ExternalC2
  External C2 Using IE COM Objects
  ☆100Updated 6 years ago
• rvrsh3ll / SharpCOM
  CSHARP DCOM Fun
  ☆130Updated 5 years ago
• rasta-mouse / GadgetToJScript
  A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …
  ☆85Updated 5 years ago
• rvrsh3ll / MSBuildAPICaller
  MSBuild Without MSBuild.exe
  ☆157Updated 4 years ago
• dev-2null / KerberosRun
  A little tool to play with Kerberos.
  ☆67Updated 2 years ago
• mez-0 / MoveScheduler
  .NET 4.0 Scheduled Job Lateral Movement
  ☆90Updated 4 years ago
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆54Updated 5 years ago
• tevora-threat / PowerView3-Aggressor
  Cobalt Strike Aggressor script menu for Powerview/SharpView
  ☆132Updated 6 years ago
• rasta-mouse / Fork-n-Run
  ☆71Updated 3 years ago
• gitjdm / dumper2020
  Yet another LSASS dumper
  ☆76Updated 4 years ago
• anthemtotheego / C_Shot
  ☆113Updated 4 years ago
• rvrsh3ll / SharpSMBSpray
  Spray a hash via smb to check for local administrator access
  ☆143Updated 4 years ago
• Barbarisch / forkatz
  credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege
  ☆124Updated 4 years ago
• last-byte / HppDLL
  Source code for HppDLL - local password dumping using MsvpPasswordValidate hooks
  ☆4Updated 4 years ago
• darkoperator / vscode-language-aggressor
  Cobalt Strike Aggressor extension for Visual Studio Code
  ☆134Updated last year
• rvrsh3ll / SharpFruit
  A C# penetration testing tool to discover low-haning web fruit via web requests.
  ☆91Updated 3 years ago
• icebearfriend / Quickrundown
  Smart overlay for Cobalt Strike PS function
  ☆31Updated 6 years ago
• jsecu / CredManBOF
  ☆94Updated 3 years ago
• Soledge / BlockEtw
  .Net Assembly to block ETW telemetry in current process
  ☆79Updated 5 years ago
• med0x2e / genxlm
  A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…
  ☆91Updated 5 years ago
• curi0usJack / rubeus2ccache
  Extracts all base64 ticket data from a rubeus /dump file and converts the tickets to ccache files for easy use with other tools.
  ☆66Updated 4 years ago
• vivami / OutlookParasite
  Outlook persistence using VSTO add-ins
  ☆87Updated 4 years ago
• decoder-it / NetworkServiceExploit
  POC for NetworkService PrivEsc
  ☆126Updated 5 years ago
• rvrsh3ll / NoMSBuild
  MSBuild without MSbuild.exe
  ☆132Updated 4 years ago
• Adepts-Of-0xCC / MiniDumpWriteDumpPoC
  MiniDumpWriteDump behavior modification hook
  ☆50Updated 4 years ago
• PorLaCola25 / TransactedSharpMiniDump
  Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…
  ☆71Updated 4 years ago