Alternatives and similar repositories for bhopengraph

Users that are interested in bhopengraph are comparing it to the libraries listed below

• redteamronin / EmbedInHTML

  View on GitHub
  ☆17Jan 9, 2025Updated last year
• Scorpion-Security-Labs / OpenHashAPI

  View on GitHub
  OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…
  ☆13Oct 27, 2024Updated last year
• whokilleddb / funcshenanigans

  View on GitHub
  A bunch of shenanigans using functions, VEH and more
  ☆37Jun 8, 2025Updated 8 months ago
• mwnickerson / COMHijackBOF

  View on GitHub
  ☆37Nov 25, 2025Updated 2 months ago
• antroguy / GetAccessTokenWithSSOCookie

  View on GitHub
  ☆50Jun 4, 2025Updated 8 months ago
• 0xRedpoll / ludus_cobaltstrike_teamserver

  View on GitHub
  Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers
  ☆18Mar 19, 2025Updated 10 months ago
• ToweringDragoon / SACL_Scanner

  View on GitHub
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆50Feb 13, 2025Updated last year
• redskal / SharpAzbelt

  View on GitHub
  .NET port of Leron Gray's azbelt tool.
  ☆26Sep 21, 2023Updated 2 years ago
• HaydoW / NerfDefender

  View on GitHub
  BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.
  ☆24Jul 5, 2023Updated 2 years ago
• Teach2Breach / stargate

  View on GitHub
  Locate dlls and function addresses without PEB Walk and EAT parsing
  ☆104Nov 7, 2025Updated 3 months ago
• MythicAgents / forge

  View on GitHub
  Command Augmentation support for BOFs and .NET assemblies across agents
  ☆38Jan 12, 2026Updated last month
• redr0nin / bloudstrike

  View on GitHub
  Linux CS bypass technique
  ☆32Feb 4, 2025Updated last year
• 0xRedpoll / ludus_mythic_teamserver

  View on GitHub
  Ludus role for deploying a Mythic Teamserver onto Linux servers
  ☆23Mar 16, 2025Updated 10 months ago
• snovvcrash / RemoteRegSave

  View on GitHub
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆41Dec 8, 2023Updated 2 years ago
• cybersectroll / TrollDisappearKey

  View on GitHub
  ☆51Jul 8, 2025Updated 7 months ago
• jfjallid / go-cmloot

  View on GitHub
  A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)
  ☆16Jul 27, 2024Updated last year
• Offensive-Panda / .NET_PROFILER_DLL_LOADING

  View on GitHub
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆46Jul 29, 2024Updated last year
• zimnyaa / smbsocks

  View on GitHub
  A simple rpc2socks alternative in pure Go.
  ☆31Jul 8, 2024Updated last year
• Logisek / AfterShell

  View on GitHub
  Fast Windows post-exploitation wins after initial access.
  ☆28Jan 28, 2026Updated 2 weeks ago
• Wh1t3Rh1n0 / SlackEnum

  View on GitHub
  A user enumeration tool for Slack.
  ☆35Jun 10, 2024Updated last year
• ibaiC / SafeHarbor-BOF

  View on GitHub
  Safe Harbor is a BOF that streamlines process reconnaissance for red team operations by identifying trusted, low-noise targets to maintai…
  ☆75Oct 27, 2025Updated 3 months ago
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated last year
• simondotsh / DirSync

  View on GitHub
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆29Apr 26, 2023Updated 2 years ago
• Synzack / ludus_sccm

  View on GitHub
  An Ansible collection that installs an SCCM deployment with optional configurations.
  ☆101Dec 8, 2025Updated 2 months ago
• cyndicatelabs / brc4_profile_maker

  View on GitHub
  An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.
  ☆31May 23, 2025Updated 8 months ago
• 0xthirteen / mtprocess

  View on GitHub
  Python script to leverage MSFT_MTProcess WMI class
  ☆39Sep 17, 2025Updated 4 months ago
• sudonoodle / BOF-entra-authcode-flow

  View on GitHub
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆122Jan 17, 2026Updated 3 weeks ago
• Antonlovesdnb / ConstructingDefenseLab

  View on GitHub
  Ludus range for the Constructing Defense Lab
  ☆74Nov 10, 2025Updated 3 months ago
• WildByDesign / ACLViewer

  View on GitHub
  ACL Viewer for Windows
  ☆132May 4, 2025Updated 9 months ago
• smokeme / asar-backdoor

  View on GitHub
  ☆33Mar 19, 2025Updated 10 months ago
• two06 / LinkedIntel

  View on GitHub
  LinkedIn recon the easy way
  ☆111Jul 3, 2025Updated 7 months ago
• zero2504 / COMouflage

  View on GitHub
  COM-based DLL Surrogate Injection
  ☆140Dec 9, 2025Updated 2 months ago
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated 11 months ago
• xelemental / Mal-LNK-Generator

  View on GitHub
  ☆39Mar 28, 2025Updated 10 months ago
• ibaiC / FriendlyFireBOF

  View on GitHub
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆57Apr 14, 2025Updated 10 months ago
• WKL-Sec / slack-udc2

  View on GitHub
  Cobalt Strike UDC2 implementation that provides an Slack C2 channel
  ☆60Jan 5, 2026Updated last month
• dirkjanm / DeviceToken

  View on GitHub
  Request device ticket/token using the device's MSA
  ☆38Aug 25, 2025Updated 5 months ago
• 0xflux / Vectored-Exception-Handling-Squared

  View on GitHub
  Vectored Exception Handling Squared
  ☆29Dec 27, 2025Updated last month
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Feb 10, 2025Updated last year