A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or BRC4.
☆26Feb 29, 2024Updated 2 years ago
Alternatives and similar repositories for OffensiveLAM
Users that are interested in OffensiveLAM are comparing it to the libraries listed below
Sorting:
- Simple reverse ICMP shell☆14Apr 30, 2024Updated last year
- A library for interacting with Windows through SMB written in Nim.☆16Sep 14, 2025Updated 5 months ago
- A New Exploitation Technique for Visual Studio Projects☆11Nov 5, 2023Updated 2 years ago
- ☆11Jul 11, 2023Updated 2 years ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆100Jan 3, 2026Updated last month
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆110Mar 25, 2024Updated last year
- ☆16Nov 15, 2022Updated 3 years ago
- malware written for educational purposes☆71Dec 31, 2025Updated 2 months ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆122May 29, 2024Updated last year
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆145Feb 1, 2026Updated last month
- Automated .NET AppDomain hijack payload generation☆129Feb 4, 2025Updated last year
- ☆101Oct 7, 2023Updated 2 years ago
- Host CLR and run .NET binaries using Rust☆151Dec 23, 2025Updated 2 months ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆41Jan 14, 2026Updated last month
- An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.☆21Dec 15, 2024Updated last year
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments☆113Feb 13, 2022Updated 4 years ago
- Rust crate to simplify Windows ACL operations☆19Jun 9, 2023Updated 2 years ago
- Playing with packets in C#☆15Aug 16, 2024Updated last year
- Abuse leaked token handles.☆136Dec 14, 2023Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆78Feb 8, 2023Updated 3 years ago
- DJI Drone Control Hijacking☆41Sep 13, 2023Updated 2 years ago
- ☆121Nov 21, 2024Updated last year
- XOR decrypting shellcode using the GPU with OpenCL.☆120May 22, 2025Updated 9 months ago
- Rust template/library for implementing your own COFF loader☆72Jan 27, 2025Updated last year
- Your syscall factory☆126Jan 13, 2026Updated last month
- LOCAL AND REMOTE HOOK msv1_0!SpAcceptCredentials from LSASS.exe and DUMP DOMAIN/LOGIN/PASSWORD IN CLEARTEXT to text file.☆123Jan 27, 2020Updated 6 years ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆160Jul 14, 2025Updated 7 months ago
- Spoofing desktop login applications with WinForms and WPF☆177Feb 19, 2024Updated 2 years ago
- ☆64May 31, 2024Updated last year
- Offensive Lua.☆223Feb 2, 2026Updated 3 weeks ago
- Hooked create process injection for meterpreter☆23Jun 16, 2021Updated 4 years ago
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer☆539Feb 13, 2024Updated 2 years ago
- DEFCON 31 slide deck and video link☆66Jun 2, 2025Updated 8 months ago
- ☆130Dec 4, 2023Updated 2 years ago
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆108Apr 18, 2024Updated last year
- Canary Detection☆190Oct 20, 2025Updated 4 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆361Dec 13, 2025Updated 2 months ago
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year