Alternatives and similar repositories for winhook

Users that are interested in winhook are comparing it to the libraries listed below

• diljith369 / nim4Pentest
  My nim learning experiments
  ☆11Updated 2 years ago
• magisterquis / shelloverreversessh
  A little implant which SSH's back with a shell
  ☆38Updated 3 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago
• m8sec / OffsecDev
  Working repo used to experiment with various languages as it relates to offensive security & evasion.
  ☆31Updated 10 months ago
• scriptchildie / gohellsgate
  Golang Implementation of Hell's gate
  ☆17Updated last year
• moloch-- / sgn
  Shikata ga nai (仕方がない) encoder ported into go with several improvements
  ☆26Updated 2 years ago
• misterch0c / BeaconTelegram
  Send message on Telegram when you get a new Cobalt Strike beacon
  ☆21Updated 5 years ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆32Updated last year
• hackerhouse-opensource / cve-2021-34527
  CVE-2021-34527 AddPrinterDriverEx() Privilege Escalation
  ☆20Updated 2 years ago
• itaymigdal / some-scripts
  Some Cyber Security related scripts
  ☆19Updated last year
• hyp3rlinx / NtFileSins
  Windows File Enumeration Intel Gathering Tool.
  ☆17Updated last year
• xforcered / CheckCert
  Obtain and parse SSL certificates
  ☆10Updated 3 years ago
• timwhitez / JmpUnhook
  Ntdll Unhooking POC
  ☆19Updated 2 years ago
• Gr1mmie / Coeus
  ADSI based SA tool
  ☆17Updated 3 years ago
• Noxtal / follina
  All about CVE-2022-30190, aka follina, that is a RCE vulnerability that affects Microsoft Support Diagnostic Tools (MSDT) on Office apps …
  ☆24Updated 2 years ago
• Synzack / Go-Syscall-Examples
  Simple PoCs for utilizing Windows syscalls in Go
  ☆16Updated 4 years ago
• Ne0nd0g / go-coff
  Load and execute a common object file format (COFF) in the current process
  ☆28Updated last year
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago
• AnubisSec / PingPlant
  ☆12Updated last year
• audibleblink / getsystem
  Small utility package for manipulating Windows process tokens
  ☆26Updated 3 years ago
• GeorgePatsias / PayloadFactory
  C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
  ☆35Updated 3 years ago
• dosxuz / ProcessGhosting
  Small POC for process ghosting
  ☆39Updated 3 years ago
• chvancooten / nimbuild
  A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)
  ☆16Updated last year
• PL-V / Firefox-WebInject
  Firefox webInjector capable of injecting codes into webpages using a mitmproxy.
  ☆40Updated 2 years ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆36Updated 11 months ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• Meckazin / HidingFromETW
  PoC for detecting and evading ETW detection of .Net Assembly.Load
  ☆20Updated 4 years ago
• MythicMeta / MythicContainer
  GoLang package for creating Mythic Payload Types, C2 Profiles, Translation Services, WebHook listeners, and Loggers
  ☆19Updated last month
• mobdk / winNoise
  Execute embedded Mimikatz
  ☆13Updated 3 years ago