Alternatives and similar repositories for archiver-MOTW-support-comparison:

Users that are interested in archiver-MOTW-support-comparison are comparing it to the libraries listed below

• jsecurity101 / ETWInspector
  ☆155Updated 9 months ago
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆138Updated 2 years ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆141Updated 9 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆175Updated last month
• CCob / DRSAT
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆227Updated 2 months ago
• Wh1t3Rh1n0 / PECheck
  A tool to verify and create PE Checksums for Portable Executable (PE) files.
  ☆51Updated last year
• Mr-Un1k0d3r / WindowsDllsExport
  A list of all the DLLs export in C:\windows\system32\
  ☆214Updated 3 years ago
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆71Updated last year
• jsecurity101 / JonMon
  ☆212Updated last month
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆77Updated last month
• m417z / winapiexec
  A small tool that allows to run WinAPI functions through command line parameters
  ☆184Updated 2 years ago
• usdAG / SharpLink
  Create file system symbolic links from low privileged user accounts within PowerShell
  ☆92Updated 2 years ago
• cybersectroll / TrollUAC
  ☆136Updated 9 months ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆113Updated 5 months ago
• tijldeneut / dpapilab-ng
  DPAPILAB Next Gen, script collection
  ☆81Updated 2 years ago
• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆199Updated 9 months ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆38Updated 5 months ago
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated last year
• CCob / Shwmae
  ☆145Updated last month
• Immersive-Labs-Sec / msrc-api
  A collection of tools to interact with Microsoft Security Response Center API
  ☆95Updated last year
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆105Updated 2 years ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆122Updated 2 years ago
• deepinstinct / Lsass-Shtinkering
  ☆375Updated 2 years ago
• sensepost / mydumbedr
  ☆113Updated last year
• synacktiv / ntdissector
  ☆138Updated 6 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆85Updated last year
• floesen / EventLogCrasher
  ☆186Updated last year
• markuta / bw-dump
  A proof-of-concept for (CVE-2023-38840) that extracts plaintext master passwords from a locked Bitwarden vault.
  ☆38Updated last year
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆120Updated 3 years ago
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆89Updated 10 months ago