Alternatives and similar repositories for WinPwnage

Users that are interested in WinPwnage are comparing it to the libraries listed below

• peewpw / Invoke-PSImage
  Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
  ☆2,194Updated 6 years ago
• govolution / avet
  AntiVirus Evasion Tool
  ☆1,741Updated 9 months ago
• Mr-Un1k0d3r / DKMC
  DKMC - Dont kill my cat - Malicious payload evasion tool
  ☆1,416Updated 5 years ago
• paranoidninja / CarbonCopy
  A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
  ☆1,417Updated 5 years ago
• sevagas / macro_pack
  macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other f…
  ☆2,295Updated last year
• AlessandroZ / BeRoot
  Privilege Escalation Project - Windows / Linux / Mac
  ☆2,605Updated last year
• hlldz / Phant0m
  Windows Event Log Killer
  ☆1,810Updated 2 years ago
• trustedsec / trevorc2
  TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.
  ☆1,306Updated 4 years ago
• skelsec / pypykatz
  Mimikatz implementation in pure Python
  ☆3,240Updated last month
• p3nt4 / PowerShdll
  Run PowerShell with rundll32. Bypass software restrictions.
  ☆1,821Updated 4 years ago
• outflanknl / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆2,229Updated 2 years ago
• secretsquirrel / SigThief
  Stealing Signatures and Making One Invalid Signature at a Time
  ☆2,363Updated 4 years ago
• SySS-Research / Seth
  Perform a MitM attack and extract clear text credentials from RDP connections
  ☆1,447Updated 2 months ago
• oddcod3 / Phantom-Evasion
  Python antivirus evasion tool
  ☆1,450Updated 2 years ago
• nccgroup / Winpayloads
  Undetectable Windows Payload Generation
  ☆1,610Updated 3 years ago
• Ekultek / BlueKeep
  Proof of concept for CVE-2019-0708
  ☆1,185Updated 4 years ago
• byt3bl33d3r / SILENTTRINITY
  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
  ☆2,311Updated 2 years ago
• 0x00-0x00 / ShellPop
  Pop shells like a master.
  ☆1,486Updated 6 years ago
• danielbohannon / Invoke-Obfuscation
  PowerShell Obfuscator
  ☆4,182Updated 2 years ago
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,918Updated 5 years ago
• deepzec / Bad-Pdf
  Steal Net-NTLM Hash using Bad-PDF
  ☆1,138Updated 3 months ago
• ZHacker13 / ReverseTCPShell
  PowerShell ReverseTCP Shell - Framework
  ☆1,062Updated 3 years ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,166Updated 4 years ago
• WindowsExploits / Exploits
  Windows Exploits
  ☆1,291Updated 5 years ago
• matterpreter / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆2,578Updated last month
• Cn33liz / p0wnedShell
  PowerShell Runspace Post Exploitation Toolkit
  ☆1,548Updated 6 years ago
• Cybellum / DoubleAgent
  Zero-Day Code Injection and Persistence Technique
  ☆1,246Updated 3 years ago
• trustedsec / unicorn
  Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…
  ☆3,894Updated 2 years ago
• hlldz / SpookFlare
  Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.
  ☆949Updated 6 years ago
• TheWover / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆4,429Updated 6 months ago