Alternatives and similar repositories for msiscan:

Users that are interested in msiscan are comparing it to the libraries listed below

• morRubin / NegoExRelay
  ☆83Updated 2 years ago
• xpn / CloudInject
  ☆106Updated 2 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆161Updated 7 months ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated 11 months ago
• powerseb / PowerExtract
  ☆113Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated last year
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆87Updated 7 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆76Updated last year
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆104Updated 2 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆168Updated last year
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆143Updated 8 months ago
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆83Updated 8 months ago
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆115Updated 8 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆51Updated 5 months ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆62Updated last month
• Wh04m1001 / DiagTrackEoP
  ☆89Updated 2 years ago
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆88Updated 2 years ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆78Updated 2 years ago
• two06 / CerealKiller
  .NET deserialization hunter
  ☆76Updated 6 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆84Updated 11 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆103Updated 9 months ago
• 0xe7 / RoastInTheMiddle
  ☆70Updated last year
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆139Updated 3 months ago
• tothi / stager_libpeconv
  A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading
  ☆83Updated 2 years ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆98Updated last year
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆118Updated 2 years ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 7 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆133Updated 6 months ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆114Updated last year
• rasta-mouse / CsWhispers
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆173Updated 10 months ago