Alternatives and similar repositories for shellnot

Users that are interested in shellnot are comparing it to the libraries listed below

• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆59Updated 5 months ago
• dis0rder0x00 / stillepost
  Using Chromium-based browsers as a proxy for C2 traffic.
  ☆130Updated 3 weeks ago
• 0xthirteen / rpc2wc
  RPC to WebClient startup
  ☆53Updated 4 months ago
• decoder-it / ChgPass
  ☆137Updated 10 months ago
• nickvourd / Rocabella
  Sniffing files generator
  ☆59Updated 10 months ago
• KingOfTheNOPs / Get-NetNTLM
  Internal Monologue BOF
  ☆78Updated last year
• kapellos / LNKSmuggler
  A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
  ☆90Updated 11 months ago
• whokilleddb / sinister-vsix
  Blog/Journal on how to backdoor VSCode extensions
  ☆75Updated 5 months ago
• breakfix / SharpSCOM
  A C# utility for interacting with SCOM
  ☆90Updated 3 weeks ago
• OtterHacker / AWSRoundRobin
  ☆41Updated 10 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆80Updated 2 years ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• outflanknl / regcertipy
  Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does
  ☆95Updated 5 months ago
• CodeXTF2 / CustomC2ChannelTemplate
  template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.
  ☆95Updated 3 weeks ago
• shelltrail / cmloot
  ☆71Updated 3 months ago
• morRubin / NegoExRelay
  ☆88Updated 3 years ago
• OtterHacker / ShareFouine
  ☆52Updated last year
• cybersectroll / TrollDisappearKey
  ☆51Updated 5 months ago
• temp43487580 / EntraPassTheCert
  tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it
  ☆130Updated 4 months ago
• hoodoer / DragonHash
  Demo code JavaScript POC that tricks user into sending Windows hash to responder
  ☆36Updated 2 weeks ago
• xpn / CloudInject
  ☆115Updated last year
• Nomad0x7 / sekken-enum
  adws enumeration bof
  ☆160Updated 2 months ago
• andreisss / Living-off-the-COM-Type-Coercion-Abuse
  This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…
  ☆51Updated 7 months ago
• whokilleddb / lordran.polymorphic.shellcode
  Things i do because i saw it on twitter on a weekend
  ☆57Updated 5 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated last year
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆123Updated last week
• OtterHacker / AWSRedirector
  ☆57Updated 10 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆37Updated 3 weeks ago
• klezVirus / RAIWhateverTrigger
  Local SYSTEM auth trigger for relaying - X
  ☆155Updated 5 months ago
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆39Updated 9 months ago