Alternatives and similar repositories for Covenant

Users that are interested in Covenant are comparing it to the libraries listed below

• rasta-mouse / AMSITrigger
  The Hunt for Malicious Strings
  ☆13Updated 4 years ago
• Flangvik / SharpAppLocker
  C# port of the Get-AppLockerPolicy PS cmdlet
  ☆100Updated 2 years ago
• rasta-mouse / OffensiveCSharp
  Collection of Offensive C# Tooling
  ☆12Updated 3 years ago
• cham423 / cs-tools
  cobalt strike tools
  ☆31Updated 3 years ago
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆55Updated 5 years ago
• S3cur3Th1sSh1t / xencrypt
  A PowerShell script anti-virus evasion tool
  ☆17Updated 4 years ago
• PorLaCola25 / TransactedSharpMiniDump
  Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…
  ☆71Updated 4 years ago
• Adepts-Of-0xCC / MiniDumpWriteDumpPoC
  MiniDumpWriteDump behavior modification hook
  ☆50Updated 4 years ago
• V1V1 / SharpScribbles
  My doodles as I learn C#
  ☆78Updated 5 years ago
• dtrizna / DotNetInject
  Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.
  ☆37Updated 5 years ago
• xan7r / Misc
  ☆46Updated 4 years ago
• S3cur3Th1sSh1t / Get-System-Techniques
  ☆96Updated 3 years ago
• slyd0g / SK8RAT
  C++ implant that interfaces with a SK8PARK server
  ☆49Updated 4 years ago
• djhohnstein / ScatterBrain
  Suite of Shellcode Running Utilities
  ☆113Updated 5 years ago
• TestingPens / CPLDropper
  A Control Panel Applet dropper project. It has a high success rate on engagements since nobody cares about .CPL files and you can just do…
  ☆53Updated 7 years ago
• dtrizna / DInvoke_PoC
  Hardened Proof of Concept of D/Invoke Process Injection malware
  ☆42Updated 5 years ago
• djhohnstein / SharpSC
  Simple .NET assembly to interact with services.
  ☆41Updated 5 years ago
• rasta-mouse / SharpRDP
  Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
  ☆12Updated 5 years ago
• hausec / MaliciousClickOnceMSBuild
  Basic C# Project that will take an MSBuild payload and run it with MSBuild via ClickOnce.
  ☆92Updated 4 years ago
• IonizeCbr / AmsiPatchDetection
  ☆20Updated 5 years ago
• rvrsh3ll / RuralBishop
  D/Invoke port of UrbanBishop
  ☆29Updated 4 years ago
• rasta-mouse / RuralBishop
  D/Invoke port of UrbanBishop
  ☆108Updated 5 years ago
• tmenochet / ADThief
  Post-exploitation tool for attacking Active Directory domain controllers
  ☆18Updated 2 years ago
• redteamertips / DinvokeDupetokenAndThreadSwitcheroo
  ☆26Updated 4 years ago
• vivami / OutlookParasite
  Outlook persistence using VSTO add-ins
  ☆87Updated 4 years ago
• byt3bl33d3r / Naga
  A C# stager for SILENTTRINITY (https://github.com/byt3bl33d3r/SILENTTRINITY)
  ☆66Updated 5 years ago
• CCob / PwnyForm
  ☆48Updated 4 years ago
• boku7 / Nobelium-PdfDLRunAesShellcode
  A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn
  ☆101Updated 2 years ago
• kyleavery / ThirdEye
  Weaponizing CLRvoyance for Post-Ex .NET Execution
  ☆36Updated 4 years ago
• praetorian-inc / Matryoshka
  Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.
  ☆39Updated 4 years ago