Alternatives and similar repositories for Invoke-Decoder:

Users that are interested in Invoke-Decoder are comparing it to the libraries listed below

• decoder-it / CreateTokenExample
  ☆17Updated 5 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• tobiohlala / PSMemory
  Automation Capable Multi Search 64 Bit Windows Memory Scanner
  ☆28Updated 4 years ago
• DamonMohammadbagher / ETWNetMonv3
  ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…
  ☆39Updated last year
• shantanu561993 / heroku-reverse-proxy
  Spin up a reverse proxy quickly on Heroku
  ☆14Updated 4 years ago
• 3gstudent / SCTPersistence
  Create COM Objects backed by Scripts, not DLLs
  ☆9Updated 7 years ago
• jsecurity101 / jsecurity101
  ☆14Updated last month
• WithSecureLabs / RemotePSpy
  RemotePSpy provides live monitoring of remote PowerShell sessions, which is particularly useful for older (pre-5.0) versions of PowerShel…
  ☆18Updated 5 years ago
• DissectMalware / npp-langs-4-sec
  Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals
  ☆14Updated 4 years ago
• cfalta / PoshRandom
  A not-at-all-ordered compilation of random security-related powershell scripts :-)
  ☆12Updated 3 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆23Updated 4 years ago
• xpn / jupyter
  Collection of Jupyter notebooks
  ☆13Updated 4 years ago
• tevora-threat / atomic_red_team_gui
  Windows GUI/Execution Engine for Atomic Red Team Atomics
  ☆34Updated 4 years ago
• bufferbandit / silent_cleanup_uac_bypass
  Silent Cleanup UAC Bypass POC
  ☆11Updated 5 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• hotnops / COM_Mapper
  A tool to create COM class/interface relationships in neo4j
  ☆49Updated 2 years ago
• cys3c / Siofra
  DLL hijacking vulnerability scanner and PE infector tool
  ☆18Updated 7 years ago
• w1u0u1 / smb2os
  Use smb2 protocol to detect remote computer os version, support win7/server2008-win10/server2019
  ☆59Updated 3 years ago
• WithSecureLabs / dotnet-gargoyle
  A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique
  ☆52Updated 6 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 3 years ago
• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆27Updated 5 years ago
• threatexpress / procdot_sandbox
  ProcDot Malware Sandbox
  ☆24Updated 5 months ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• SadProcessor / WatchDog
  BloodHound Data Scanner
  ☆45Updated 4 years ago
• limbenjamin / LogServiceCrash
  POC code to crash Windows Event Logger Service
  ☆26Updated 4 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• ahhh / GoRedShell
  A cross platform tool for verifying credentials and executing single commands
  ☆32Updated 6 years ago