Alternatives and similar repositories for archiver-MOTW-support-comparison:

Users that are interested in archiver-MOTW-support-comparison are comparing it to the libraries listed below

• jsecurity101 / ETWInspector
  ☆155Updated 8 months ago
• markuta / bw-dump
  A proof-of-concept for (CVE-2023-38840) that extracts plaintext master passwords from a locked Bitwarden vault.
  ☆38Updated 10 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆132Updated 8 months ago
• Mr-Un1k0d3r / WindowsDllsExport
  A list of all the DLLs export in C:\windows\system32\
  ☆212Updated 3 years ago
• Wh1t3Rh1n0 / PECheck
  A tool to verify and create PE Checksums for Portable Executable (PE) files.
  ☆51Updated last year
• usdAG / SharpLink
  Create file system symbolic links from low privileged user accounts within PowerShell
  ☆90Updated 2 years ago
• deepinstinct / NoFilter
  ☆296Updated 2 months ago
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆140Updated 2 years ago
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆166Updated last year
• m417z / winapiexec
  A small tool that allows to run WinAPI functions through command line parameters
  ☆183Updated 2 years ago
• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆194Updated 7 months ago
• FourCoreLabs / LolDriverScan
  Scan vulnerable drivers on Windows with loldrivers.io
  ☆171Updated last year
• CCob / DRSAT
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆215Updated 3 weeks ago
• Wh04m1001 / IDiagnosticProfileUAC
  ☆181Updated 2 years ago
• jsecurity101 / JonMon
  ☆186Updated last week
• gtworek / VolatileDataCollector
  ☆196Updated 2 months ago
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆103Updated 2 years ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆109Updated last year
• CCob / Shwmae
  ☆136Updated 3 months ago
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆93Updated 2 years ago
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆68Updated last year
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆112Updated 4 months ago
• mlcsec / FormThief
  Spoofing desktop login applications with WinForms and WPF
  ☆170Updated 10 months ago
• sensepost / mydumbedr
  ☆112Updated 11 months ago
• synacktiv / ntdissector
  ☆131Updated 5 months ago
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆77Updated last year
• Luct0r / KerberOPSEC
  OPSEC safe Kerberoasting in C#
  ☆189Updated 2 years ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆76Updated 4 months ago
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆303Updated last year
• SafeBreach-Labs / aikido_wiper
  ☆64Updated 2 years ago