Alternatives and similar repositories for HIPS_LIPS

Users that are interested in HIPS_LIPS are comparing it to the libraries listed below

• johnjohnsp1 / AllTheThings
  Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.
  ☆32Updated 8 years ago
• Truneski / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆62Updated 6 years ago
• secgroundzero / tetanus
  Helper script for mangling CS payloads
  ☆51Updated 6 years ago
• FSecureLABS / SharpGPO-RemoteAccessPolicies
  A C# tool for enumerating remote access policies through group policy.
  ☆73Updated 6 years ago
• outflanknl / DoH_c2_Trigger
  Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/
  ☆52Updated 6 years ago
• rmdavy / WordAmsiBypass
  ☆38Updated 5 years ago
• kmkz / Sources
  Random source codes
  ☆25Updated 4 years ago
• vysecurity / FSharp-Shellcode
  F# Implementation to spawn shellcode
  ☆47Updated 7 years ago
• rasta-mouse / CollectorService
  ☆54Updated 6 years ago
• redcanaryco / wwhf
  Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.
  ☆64Updated 5 years ago
• djhohnstein / wlbsctrl_poc
  C++ POC code for the wlbsctrl.dll hijack on IKEEXT
  ☆53Updated 6 years ago
• CyberPoint / LEAP
  ☆24Updated 9 years ago
• threatexpress / persistence-aggressor-script
  initial commit
  ☆44Updated 7 months ago
• 3gstudent / bitsadminexec
  Use bitsadmin to maintain persistence and bypass Autoruns
  ☆66Updated 7 years ago
• scottlundgren / w32time
  ☆54Updated 6 years ago
• malcomvetter / DnsCache
  ☆45Updated 6 years ago
• icebearfriend / Quickrundown
  Smart overlay for Cobalt Strike PS function
  ☆31Updated 6 years ago
• DimopoulosElias / SimpleMimikatzObfuscator
  A set of commands to bypass Defender (and some other AVs)
  ☆20Updated 5 years ago
• djhohnstein / TSMSISrv_poc
  C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll
  ☆58Updated 6 years ago
• panagioto / SyscallHide
  Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.
  ☆76Updated 5 years ago
• kmkz / Talks
  Some talks about security
  ☆13Updated 4 years ago
• vysecurity / CobaltSplunk
  Splunk Dashboard for CobaltStrike logs
  ☆89Updated 4 years ago
• benyG / RProcDump
  Remote process dumping automation. Use it to dump Windows credentials remotely and extract clear text with Mimikatz offline
  ☆35Updated 5 years ago
• 001SPARTaN / csfm
  Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.
  ☆65Updated 7 years ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 5 years ago
• kafkaesqu3 / subtee-gist-mirror
  few months old but better than nothing
  ☆58Updated 3 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 6 years ago
• airbus-cyber / CyberSecRessources
  ☆25Updated 4 years ago
• matthewdunwoody / POSHSPY
  POSHSPY backdoor code
  ☆43Updated 8 years ago
• homjxi0e / LOLBAS222
  APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )
  ☆108Updated 6 years ago