Alternatives and similar repositories for Bolthole

Users that are interested in Bolthole are comparing it to the libraries listed below

• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆269Updated last year
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆262Updated 7 months ago
• SenSecurity / Founding
  Founding is a generator that will create a loader encrypted or obfuscated with different execution types
  ☆106Updated 4 months ago
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆283Updated 3 weeks ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆214Updated last month
• yo-yo-yo-jbo / dumping_lsass
  The different ways to dump lsass
  ☆203Updated 4 months ago
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆128Updated 10 months ago
• badsectorlabs / ludus_adaptix_c2
  An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts
  ☆174Updated 7 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆198Updated 3 weeks ago
• boku7 / venom
  Venom C2 is a dependency‑free Python3 Command & Control framework for redteam persistence
  ☆409Updated last month
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆154Updated last year
• cybersectroll / TrollAMSI
  ☆186Updated 6 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆164Updated 5 months ago
• 1r0BIT / TaskHound
  Tool to enumerate privileged Scheduled Tasks on Remote Systems
  ☆213Updated last week
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆186Updated 8 months ago
• NeffIsBack / wsuks
  Automating the MITM attack on WSUS
  ☆282Updated last month
• ZERODETECTION / MSC_Dropper
  ☆239Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆210Updated last year
• Print3M / ByteCaster
  Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…
  ☆207Updated 3 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆219Updated 8 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆280Updated 8 months ago
• django-88 / NomadScanner
  ☆164Updated last month
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆203Updated 9 months ago
• floesen / EventLogCrasher
  ☆192Updated last year
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆169Updated 11 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 7 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Updated 5 months ago
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆202Updated 11 months ago
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆202Updated 9 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆171Updated last week