Alternatives and similar repositories for JYang

Users that are interested in JYang are comparing it to the libraries listed below

• passthehashbrowns / suspendedunhook
  ☆42Updated 4 years ago
• crummie5 / Freshycalls_PoC
  A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯
  ☆39Updated 5 years ago
• Allevon412 / BreadManModuleStomping
  ☆44Updated 2 years ago
• jfmaes / DeepSleep
  all credits go to @mgeeky
  ☆64Updated 4 years ago
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆29Updated 4 years ago
• EspressoCake / DLL_Imports_BOF
  A BOF to parse the imports of a provided PE-file, optionally extracting symbols on a per-dll basis.
  ☆86Updated 4 years ago
• redteamertips / DinvokeDupetokenAndThreadSwitcheroo
  ☆26Updated 4 years ago
• EspressoCake / Process_Protection_Level_BOF
  ☆60Updated 4 years ago
• N4kedTurtle / LocalDllParse
  ☆55Updated 4 years ago
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆109Updated 4 years ago
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆57Updated 2 years ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆53Updated 5 years ago
• SolomonSklash / netntlm
  A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
  ☆37Updated 4 years ago
• thesnoom / extps-cobalt-strike-bof
  Extended Process List (Search functionality)
  ☆29Updated 4 years ago
• CCob / ProvisionAppx
  ☆39Updated 3 years ago
• SolomonSklash / SeasideBishop
  A C port of b33f's UrbanBishop
  ☆38Updated 5 years ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆43Updated 2 years ago
• EspressoCake / DLL-Exports-Extraction-BOF
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆84Updated 4 years ago
• jsecu / ElevatedEvents
  ☆31Updated 3 years ago
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆55Updated last year
• KINGSABRI / DotNetToJScriptMini
  A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.
  ☆46Updated 4 years ago
• apokryptein / secinject
  Section Mapping Process Injection (secinject): Cobalt Strike BOF
  ☆101Updated 3 years ago
• GetRektBoy724 / HalosUnhooker
  Halos Gate-based NTAPI Unhooker
  ☆52Updated 3 years ago
• S3cur3Th1sSh1t / SharpUnhooker
  C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
  ☆25Updated 2 years ago
• boku7 / halosgate-ps
  Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes
  ☆110Updated 2 years ago
• tothi / SharpStay
  .NET project for installing Persistence
  ☆63Updated 3 years ago
• EspressoCake / Toggle_Token_Privileges_BOF
  Syscall BOF to arbitrarily add/detract process token privilege rights.
  ☆61Updated last year
• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69Updated 2 years ago
• Teach2Breach / dev
  maldev obviously
  ☆28Updated 7 months ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆36Updated last year