Alternatives and similar repositories for WinPwnage

Users that are interested in WinPwnage are comparing it to the libraries listed below

• paranoidninja / CarbonCopy
  A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
  ☆1,415Updated 5 years ago
• govolution / avet
  AntiVirus Evasion Tool
  ☆1,738Updated 8 months ago
• AlessandroZ / BeRoot
  Privilege Escalation Project - Windows / Linux / Mac
  ☆2,596Updated last year
• peewpw / Invoke-PSImage
  Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
  ☆2,194Updated 6 years ago
• hlldz / Phant0m
  Windows Event Log Killer
  ☆1,807Updated 2 years ago
• Mr-Un1k0d3r / DKMC
  DKMC - Dont kill my cat - Malicious payload evasion tool
  ☆1,416Updated 5 years ago
• sevagas / macro_pack
  macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other f…
  ☆2,293Updated last year
• outflanknl / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆2,219Updated 2 years ago
• p3nt4 / PowerShdll
  Run PowerShell with rundll32. Bypass software restrictions.
  ☆1,821Updated 4 years ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,167Updated 4 years ago
• skelsec / pypykatz
  Mimikatz implementation in pure Python
  ☆3,227Updated last week
• matterpreter / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆2,564Updated last week
• nccgroup / Winpayloads
  Undetectable Windows Payload Generation
  ☆1,606Updated 3 years ago
• byt3bl33d3r / SILENTTRINITY
  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
  ☆2,305Updated 2 years ago
• ZHacker13 / ReverseTCPShell
  PowerShell ReverseTCP Shell - Framework
  ☆1,062Updated 3 years ago
• TheWover / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆4,377Updated 6 months ago
• danielbohannon / Invoke-Obfuscation
  PowerShell Obfuscator
  ☆4,171Updated 2 years ago
• trustedsec / trevorc2
  TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.
  ☆1,303Updated 3 years ago
• Ekultek / BlueKeep
  Proof of concept for CVE-2019-0708
  ☆1,184Updated 4 years ago
• oddcod3 / Phantom-Evasion
  Python antivirus evasion tool
  ☆1,450Updated 2 years ago
• secretsquirrel / SigThief
  Stealing Signatures and Making One Invalid Signature at a Time
  ☆2,354Updated 4 years ago
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,912Updated 5 years ago
• nccgroup / demiguise
  HTA encryption tool for RedTeams
  ☆1,420Updated 3 years ago
• SySS-Research / Seth
  Perform a MitM attack and extract clear text credentials from RDP connections
  ☆1,444Updated last month
• trustedsec / unicorn
  Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…
  ☆3,885Updated last year
• the-xentropy / xencrypt
  A PowerShell script anti-virus evasion tool
  ☆1,171Updated 2 years ago
• deepzec / Bad-Pdf
  Steal Net-NTLM Hash using Bad-PDF
  ☆1,138Updated 2 months ago
• api0cradle / LOLBAS
  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
  ☆1,615Updated 7 years ago
• Cn33liz / p0wnedShell
  PowerShell Runspace Post Exploitation Toolkit
  ☆1,549Updated 6 years ago
• ReversecLabs / C3
  Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…
  ☆1,693Updated 3 months ago