Alternatives and similar repositories for adPentest

Users that are interested in adPentest are comparing it to the libraries listed below

• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆159Updated 3 months ago
• dis0rder0x00 / obex
  Obex – Blocking unwanted DLLs in user mode
  ☆265Updated 2 months ago
• Kudaes / MFTool
  Direct access to NTFS volumes
  ☆283Updated 2 months ago
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆132Updated 2 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆202Updated 9 months ago
• mez-0 / citadel
  A Payload Analysis Framework
  ☆110Updated last month
• warpnet / COM-Fuzzer
  Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…
  ☆129Updated 3 weeks ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆187Updated 6 months ago
• OtterHacker / Hooker
  ☆108Updated last year
• Kudaes / Eclipse
  Activation Context Hijack
  ☆170Updated 3 months ago
• hackerhouse-opensource / SetupHijack
  SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…
  ☆254Updated last month
• Cracked5pider / earlycascade-injection
  early cascade injection PoC based on Outflanks blog post
  ☆232Updated last year
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆100Updated last week
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆228Updated 9 months ago
• safedv / Rustic64
  64-bit, position-independent implant template for Windows in Rust.
  ☆159Updated 6 months ago
• dmcxblue / WSL-Payloads
  A small How-To on creating your own weaponized WSL file
  ☆117Updated 3 months ago
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆52Updated 6 months ago
• yehia-mamdouh / ZeroProbe
  ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…
  ☆107Updated 8 months ago
• NVISOsecurity / codasm
  Payload encoding utility to effectively lower payload entropy.
  ☆120Updated 7 months ago
• MalwareTech / ExifSmugglingPoC
  A Proof-of-Concept using Cache Smuggling + Exif data to passively download a second stage payload
  ☆43Updated 3 weeks ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆159Updated 11 months ago
• rad9800 / byor
  ☆158Updated 5 months ago
• vulnableone / BypassX
  The Swiss army knife of evasion tool that bypasses AMSI, Applocker, and CLM mode simultaneously.
  ☆27Updated last year
• dmcxblue / Claude-C2
  Utilizng an MCP Server to communicate with your C2
  ☆86Updated 6 months ago
• boku7 / patchwerk
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆195Updated 9 months ago
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆151Updated 4 months ago
• Maldev-Academy / MaldevAcademyLdr.2
  RunPE implementation with multiple evasive techniques
  ☆241Updated last month
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆50Updated last year
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆164Updated 8 months ago
• eversinc33 / PSXecute
  MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.
  ☆121Updated 11 months ago