Alternatives and similar repositories for Bolthole

Users that are interested in Bolthole are comparing it to the libraries listed below

• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆265Updated 10 months ago
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆253Updated this week
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆126Updated 7 months ago
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆260Updated 4 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆203Updated last week
• yo-yo-yo-jbo / dumping_lsass
  The different ways to dump lsass
  ☆190Updated last month
• SenSecurity / Founding
  Founding is a generator that will create a loader encrypted or obfuscated with different execution types
  ☆94Updated last month
• NeffIsBack / wsuks
  Automating the MITM attack on WSUS
  ☆269Updated 3 weeks ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆199Updated 7 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆167Updated 5 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆193Updated 2 weeks ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆153Updated last year
• cybersectroll / TrollAMSI
  ☆182Updated 3 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆177Updated 4 months ago
• decoder-it / KrbRelayEx
  ☆334Updated last month
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆155Updated 2 months ago
• t3l3machus / ACEshark
  ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…
  ☆115Updated 8 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆267Updated 3 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆167Updated 3 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆267Updated 5 months ago
• badsectorlabs / ludus_adaptix_c2
  An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts
  ☆168Updated 4 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆218Updated 5 months ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆249Updated last month
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆209Updated last year
• boku7 / StringReaper
  Reaping treasures from strings in remote processes memory
  ☆271Updated 8 months ago
• RePRGM / Nimperiments
  Various one-off pentesting projects written in Nim. Updates happen on a whim.
  ☆161Updated 2 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆208Updated 3 months ago
• ZERODETECTION / MSC_Dropper
  ☆204Updated last year
• floesen / EventLogCrasher
  ☆189Updated last year
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆340Updated 2 weeks ago