Alternatives and similar repositories for WinPwnage

Users that are interested in WinPwnage are comparing it to the libraries listed below

• paranoidninja / CarbonCopy
  A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
  ☆1,412Updated 5 years ago
• peewpw / Invoke-PSImage
  Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
  ☆2,193Updated 6 years ago
• govolution / avet
  AntiVirus Evasion Tool
  ☆1,731Updated 7 months ago
• Mr-Un1k0d3r / DKMC
  DKMC - Dont kill my cat - Malicious payload evasion tool
  ☆1,416Updated 5 years ago
• AlessandroZ / BeRoot
  Privilege Escalation Project - Windows / Linux / Mac
  ☆2,591Updated last year
• outflanknl / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆2,218Updated last year
• sevagas / macro_pack
  macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other f…
  ☆2,290Updated last year
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,164Updated 4 years ago
• hlldz / Phant0m
  Windows Event Log Killer
  ☆1,803Updated 2 years ago
• p3nt4 / PowerShdll
  Run PowerShell with rundll32. Bypass software restrictions.
  ☆1,816Updated 4 years ago
• danielbohannon / Invoke-Obfuscation
  PowerShell Obfuscator
  ☆4,158Updated 2 years ago
• matterpreter / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆2,560Updated 2 years ago
• orlyjamie / mimikittenz
  A post-exploitation powershell tool for extracting juicy info from memory.
  ☆1,864Updated last year
• byt3bl33d3r / SILENTTRINITY
  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
  ☆2,305Updated 2 years ago
• trustedsec / trevorc2
  TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.
  ☆1,304Updated 3 years ago
• 0x00-0x00 / ShellPop
  Pop shells like a master.
  ☆1,483Updated 6 years ago
• ZHacker13 / ReverseTCPShell
  PowerShell ReverseTCP Shell - Framework
  ☆1,062Updated 3 years ago
• nccgroup / Winpayloads
  Undetectable Windows Payload Generation
  ☆1,606Updated 3 years ago
• api0cradle / LOLBAS
  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
  ☆1,613Updated 7 years ago
• WindowsExploits / Exploits
  Windows Exploits
  ☆1,286Updated 5 years ago
• oddcod3 / Phantom-Evasion
  Python antivirus evasion tool
  ☆1,447Updated 2 years ago
• Cn33liz / p0wnedShell
  PowerShell Runspace Post Exploitation Toolkit
  ☆1,550Updated 6 years ago
• nccgroup / demiguise
  HTA encryption tool for RedTeams
  ☆1,420Updated 3 years ago
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,909Updated 5 years ago
• trustedsec / unicorn
  Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…
  ☆3,890Updated last year
• skelsec / pypykatz
  Mimikatz implementation in pure Python
  ☆3,191Updated last month
• deepzec / Bad-Pdf
  Steal Net-NTLM Hash using Bad-PDF
  ☆1,137Updated 2 months ago
• Ekultek / BlueKeep
  Proof of concept for CVE-2019-0708
  ☆1,185Updated 4 years ago
• TheWover / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆4,358Updated 5 months ago
• SySS-Research / Seth
  Perform a MitM attack and extract clear text credentials from RDP connections
  ☆1,441Updated last month