Alternatives and similar repositories for AMSI-Bypass-HWBP

Users that are interested in AMSI-Bypass-HWBP are comparing it to the libraries listed below

• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆94Updated last month
• HulkOperator / AuthStager
  ☆57Updated 10 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆36Updated 4 months ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆42Updated 9 months ago
• PShlyundin / TimeSync
  Tool to obtain hash using MS-SNTP for user accounts
  ☆25Updated 7 months ago
• OtterHacker / AWSRoundRobin
  ☆39Updated 6 months ago
• The-Viper-One / Invoke-PassTheCert
  Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆47Updated 4 months ago
• hoodoer / DragonHash
  Demo code JavaScript POC that tricks user into sending Windows hash to responder
  ☆34Updated 2 months ago
• dmcxblue / PyObscura
  A python script that automates a C2 Profile build
  ☆43Updated 4 months ago
• voidvxvt / EnableAllTokenPrivs
  Enable or Disable TokenPrivilege(s)
  ☆14Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆40Updated last year
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆46Updated last year
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆79Updated 5 months ago
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆53Updated last month
• ricardojoserf / NativeTokenImpersonate
  Impersonate Tokens using only NTAPI functions
  ☆79Updated 4 months ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆41Updated last year
• xelemental / Mal-LNK-Generator
  ☆34Updated 4 months ago
• tijme / nimplant-beacon-position-independent-c-code
  A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
  ☆61Updated 6 months ago
• redr0nin / CVE-2024-38143
  Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
  ☆24Updated 6 months ago
• nbaertsch / PoolProxy
  Proxy function calls through the thread pool with ease
  ☆28Updated 5 months ago
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆39Updated 8 months ago
• nickvourd / Rocabella
  Sniffing files generator
  ☆59Updated 6 months ago
• Teach2Breach / rpeloader
  use python on windows with full submodule support without installation
  ☆30Updated 7 months ago
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆95Updated last month
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆57Updated 8 months ago
• jsecu / ModTask
  ☆53Updated 8 months ago
• OtterHacker / AWSRedirector
  ☆57Updated 6 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆102Updated last month
• 0xB455 / ActiveSyncBruter
  ☆26Updated 5 months ago