Alternatives and similar repositories for FlyingAFalseFlag

Users that are interested in FlyingAFalseFlag are comparing it to the libraries listed below

• SpiderLabs / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆113Updated 5 years ago
• Mr-Un1k0d3r / PoisonHandler
  lateral movement techniques that can be used during red team exercises
  ☆273Updated 5 years ago
• nopfor / ntlm_challenger
  Parse NTLM challenge messages over HTTP and SMB
  ☆151Updated 2 years ago
• FuzzySecurity / BlueHatIL-2020
  BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
  ☆147Updated 5 years ago
• decoder-it / powershellveryless
  Constrained Language Mode + AMSI bypass all in one
  ☆159Updated 6 years ago
• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆260Updated 6 years ago
• soffensive / windowsblindread
  A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system
  ☆204Updated 2 years ago
• BishopFox / pwn-pulse
  Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
  ☆137Updated 5 years ago
• nccgroup / OneLogicalMyth_Shell
  A HTA shell to assist with breakout assessments.
  ☆113Updated 3 years ago
• sailay1996 / cve-2020-1337-poc
  poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)
  ☆173Updated 5 years ago
• decoder-it / whoami-priv-Hackinparis2019
  Slides from my talk in "Hackinparis" 2019 edition
  ☆91Updated 6 years ago
• xorrior / raven
  CobaltStrike External C2 for Websockets
  ☆198Updated 6 years ago
• sensepost / UserEnum
  Domain user enumeration tool
  ☆215Updated last year
• nccgroup / BKScan
  BlueKeep scanner supporting NLA
  ☆167Updated 6 years ago
• kmkz / exploit
  Exploits and advisories
  ☆190Updated 5 years ago
• mdsecactivebreach / SharpPack
  An Insider Threat Toolkit
  ☆152Updated 6 years ago
• G0ldenGunSec / PowerPriv
  A Powershell implementation of PrivExchange designed to run under the current user's context
  ☆125Updated 6 years ago
• elnerd / Get-NetNTLM
  Powershell module to get the NetNTLMv2 hash of the current user
  ☆96Updated 3 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆232Updated 2 years ago
• felamos / weirdhta
  A tool to create obfuscated HTA script.
  ☆179Updated 4 years ago
• Und3rf10w / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆242Updated 2 years ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆286Updated 7 years ago
• Mr-Un1k0d3r / RedTeamScripts
  Repo with various Red Team scripts
  ☆145Updated 4 years ago
• RhinoSecurityLabs / Aggressor-Scripts
  Aggregation of Cobalt Strike's aggressor scripts.
  ☆143Updated 7 years ago
• HarmJ0y / ASREPRoast
  Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
  ☆205Updated 6 years ago
• ReversecLabs / peas
  PEAS is a Python 2 library and command line application for running commands on an ActiveSync server e.g. Microsoft Exchange.
  ☆181Updated 2 years ago
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆135Updated 3 years ago
• bb00 / zer0dump
  Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.
  ☆180Updated 2 years ago
• preempt / ntlm-scanner
  A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities
  ☆204Updated 4 years ago
• nettitude / Invoke-PowerThIEf
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆131Updated 5 months ago