Alternatives and similar repositories for WMIPersistence

Users that are interested in WMIPersistence are comparing it to the libraries listed below

• rvrsh3ll / SharpCOM
  CSHARP DCOM Fun
  ☆129Updated 5 years ago
• jnqpblc / SharpTask
  SharpTask is a simple code set to interact with the Task Scheduler service api and is compatible with Cobalt Strike.
  ☆91Updated 4 years ago
• rvrsh3ll / SharpExcel4-DCOM
  Port of Invoke-Excel4DCOM
  ☆105Updated 5 years ago
• dev-2null / KerberosRun
  A little tool to play with Kerberos.
  ☆67Updated 2 years ago
• djhohnstein / CSharpSetThreadContext
  C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread
  ☆119Updated 6 years ago
• mdsecactivebreach / Browser-ExternalC2
  External C2 Using IE COM Objects
  ☆100Updated 6 years ago
• mez-0 / MoveScheduler
  .NET 4.0 Scheduled Job Lateral Movement
  ☆90Updated 4 years ago
• bluscreenofjeff / MalleableC2Profiles
  Malleable C2 profiles for Cobalt Strike
  ☆72Updated 2 years ago
• airzero24 / WMIReg
  PoC to interact with local/remote registry hives through WMI
  ☆85Updated 4 years ago
• tevora-threat / PowerView3-Aggressor
  Cobalt Strike Aggressor script menu for Powerview/SharpView
  ☆131Updated 6 years ago
• last-byte / HppDLL
  Source code for HppDLL - local password dumping using MsvpPasswordValidate hooks
  ☆4Updated 4 years ago
• rvrsh3ll / MSBuildAPICaller
  MSBuild Without MSBuild.exe
  ☆157Updated 4 years ago
• anthemtotheego / C_Shot
  ☆113Updated 4 years ago
• rasta-mouse / GadgetToJScript
  A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …
  ☆85Updated 5 years ago
• pkb1s / SharpRelay
  ☆176Updated 4 years ago
• 0xB455 / AmsiBypass
  C# PoC implementation for bypassing AMSI via in memory patching
  ☆65Updated 4 years ago
• secgroundzero / CS-Aggressor-Scripts
  Aggressor Scripts for Cobalt Strike
  ☆76Updated last year
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆54Updated 5 years ago
• rvrsh3ll / NoMSBuild
  MSBuild without MSbuild.exe
  ☆132Updated 4 years ago
• darkoperator / vscode-language-aggressor
  Cobalt Strike Aggressor extension for Visual Studio Code
  ☆134Updated 11 months ago
• med0x2e / genxlm
  A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…
  ☆90Updated 5 years ago
• outflanknl / external_c2
  POC for Cobalt Strike external C2
  ☆134Updated 3 years ago
• rvrsh3ll / SharpSMBSpray
  Spray a hash via smb to check for local administrator access
  ☆143Updated 4 years ago
• rasta-mouse / Fork-n-Run
  ☆70Updated 3 years ago
• FatRodzianko / Get-RBCD-Threaded
  Tool to discover Resource-Based Constrained Delegation attack paths in Active Directory environments
  ☆122Updated 3 years ago
• offsecginger / AES-PowerShellCode
  Standalone version of my AES Powershell payload for Cobalt Strike.
  ☆111Updated 5 years ago
• Soledge / BlockEtw
  .Net Assembly to block ETW telemetry in current process
  ☆79Updated 5 years ago
• rvrsh3ll / SharpFruit
  A C# penetration testing tool to discover low-haning web fruit via web requests.
  ☆91Updated 3 years ago
• gitjdm / dumper2020
  Yet another LSASS dumper
  ☆76Updated 4 years ago
• tevora-threat / aggressor-powerview
  PowerView menu for Cobalt Strike
  ☆67Updated 7 years ago