Alternatives and similar repositories for Bolthole

Users that are interested in Bolthole are comparing it to the libraries listed below

• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆266Updated 11 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆206Updated last month
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆126Updated 8 months ago
• SenSecurity / Founding
  Founding is a generator that will create a loader encrypted or obfuscated with different execution types
  ☆95Updated 2 months ago
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆260Updated 5 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆203Updated 7 months ago
• NeffIsBack / wsuks
  Automating the MITM attack on WSUS
  ☆274Updated 3 weeks ago
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆264Updated 2 weeks ago
• decoder-it / KrbRelayEx
  ☆338Updated 2 weeks ago
• login-securite / conpass
  Continuous password spraying tool
  ☆193Updated last month
• yo-yo-yo-jbo / dumping_lsass
  The different ways to dump lsass
  ☆193Updated 2 months ago
• django-88 / NomadScanner
  ☆164Updated 6 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆269Updated 6 months ago
• 0xflux / Wyrm
  The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.
  ☆254Updated this week
• cybersectroll / TrollAMSI
  ☆183Updated 4 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆156Updated 3 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆219Updated 6 months ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆154Updated last year
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆166Updated 6 months ago
• badsectorlabs / ludus_adaptix_c2
  An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts
  ☆169Updated 5 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆207Updated 4 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆209Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆177Updated 5 months ago
• ZERODETECTION / MSC_Dropper
  ☆210Updated last year
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆169Updated last week
• rad9800 / byor
  ☆157Updated 4 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆268Updated 3 months ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆130Updated 9 months ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆263Updated 2 weeks ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year