Alternatives and similar repositories for ScheduleRunner

Users that are interested in ScheduleRunner are comparing it to the libraries listed below

• cube0x0 / MiniDump
  C# Lsass parser
  ☆297Updated 3 years ago
• improsec / SharpEventPersist
  Persistence by writing/reading shellcode from Event Log
  ☆377Updated 3 years ago
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆462Updated last year
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆369Updated 3 years ago
• netero1010 / RDPHijack-BOF
  Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
  ☆308Updated 3 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆306Updated last year
• mdsecactivebreach / DragonCastle
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆300Updated 2 years ago
• nickvourd / COM-Hunter
  COM Hijacking VOODOO
  ☆316Updated 6 months ago
• Gr1mmie / AtlasC2
  C# C2 Framework centered around Stage 1 operations
  ☆214Updated 3 years ago
• mgeeky / ElusiveMice
  Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
  ☆475Updated 2 years ago
• CCob / MirrorDump
  Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…
  ☆267Updated 4 years ago
• boku7 / spawn
  Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
  ☆468Updated 2 years ago
• antonioCoco / MalSeclogon
  A little tool to play with the Seclogon service
  ☆320Updated 3 years ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆288Updated 2 years ago
• boku7 / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆380Updated 2 years ago
• Cracked5pider / KaynStrike
  UDRL for CS
  ☆436Updated last year
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆420Updated 3 years ago
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆419Updated 2 years ago
• RiccardoAncarani / LiquidSnake
  LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript
  ☆344Updated 4 years ago
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆348Updated 2 years ago
• subat0mik / whoamsi
  An effort to track security vendors' use of Microsoft's Antimalware Scan Interface
  ☆249Updated 3 years ago
• boku7 / Ninja_UUID_Runner
  Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!
  ☆449Updated 2 years ago
• Octoberfest7 / MemFiles
  A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
  ☆463Updated last year
• Hagrid29 / DuplicateDump
  Dumping LSASS with a duplicated handle from custom LSA plugin
  ☆202Updated 3 years ago
• Yaxser / CobaltStrike-BOF
  Collection of beacon BOF written to learn windows and cobaltstrike
  ☆355Updated 2 years ago
• nettitude / RunPE
  C# Reflective loader for unmanaged binaries.
  ☆441Updated 2 years ago
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆233Updated 3 years ago
• cepxeo / dll4shell
  Shellcode launcher for AV bypass
  ☆217Updated last year
• EspressoCake / Defender_Exclusions-BOF
  A BOF to determine Windows Defender exclusions.
  ☆246Updated 2 years ago
• wsummerhill / CobaltStrike_BOF_Collections
  Useful Cobalt Strike BOFs found or used during engagements
  ☆144Updated last year