Alternatives and similar repositories for archiver-MOTW-support-comparison:

Users that are interested in archiver-MOTW-support-comparison are comparing it to the libraries listed below

• jsecurity101 / ETWInspector
  ☆156Updated this week
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆150Updated 11 months ago
• Mr-Un1k0d3r / WindowsDllsExport
  A list of all the DLLs export in C:\windows\system32\
  ☆216Updated 3 years ago
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆141Updated 2 years ago
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆72Updated last year
• Wh04m1001 / IDiagnosticProfileUAC
  ☆182Updated 2 years ago
• sensepost / mydumbedr
  ☆117Updated last year
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆113Updated 2 years ago
• xforcered / WFH
  ☆189Updated 2 years ago
• Luct0r / KerberOPSEC
  OPSEC safe Kerberoasting in C#
  ☆191Updated 2 years ago
• cybersectroll / TrollUAC
  ☆137Updated 11 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆186Updated 2 months ago
• jsecurity101 / JonMon
  ☆218Updated 3 months ago
• deepinstinct / Lsass-Shtinkering
  ☆375Updated 2 years ago
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆160Updated 3 weeks ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆118Updated 7 months ago
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆175Updated 2 years ago
• ustayready / wnfexec
  WNF Code Execution Library Using C#
  ☆110Updated 4 years ago
• Wh1t3Rh1n0 / PECheck
  A tool to verify and create PE Checksums for Portable Executable (PE) files.
  ☆51Updated last year
• CCob / SylantStrike
  Simple EDR implementation to demonstrate bypass
  ☆172Updated 4 years ago
• bananabr / TimeException
  A tool to find folders excluded from AV real-time scanning using a time oracle
  ☆233Updated last year
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆98Updated last year
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆100Updated 2 months ago
• mlcsec / FormThief
  Spoofing desktop login applications with WinForms and WPF
  ☆173Updated last year
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆111Updated 2 years ago
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆77Updated 2 months ago
• gtworek / VolatileDataCollector
  ☆201Updated 5 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆78Updated 7 months ago
• xpn / sccmwtf
  ☆151Updated 2 months ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆124Updated 2 years ago