Alternatives and similar repositories for SharpMailBOF

Users that are interested in SharpMailBOF are comparing it to the libraries listed below

• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Updated 3 years ago
• EncodeGroup / AggressorScripts
  Simple Aggressor Scripts for Cobalt Strike
  ☆12Updated 4 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 3 years ago
• EspressoCake / Aggressor_Scripts
  A compilation of Aggressor/Sleep scripts for operational purposes that I've made.
  ☆11Updated 3 years ago
• r3motecontrol / Sharp-Suite-CompiledBinaries
  Compiled Binaries for Sharp Suite
  ☆14Updated 5 years ago
• two06 / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆15Updated 4 years ago
• mdsecactivebreach / SharpAltiris
  ☆25Updated 2 years ago
• leonjza / tc2
  treafik fronted c2 examples
  ☆26Updated 4 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 3 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆30Updated 4 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 4 years ago
• sk3w / beacon-object-files
  Miscellaneous examples for use with Cobalt Strike Beacon
  ☆10Updated 4 years ago
• malcomvetter / TLAD
  The Totally Legit Authentication Dialog
  ☆12Updated last year
• invictus-0x90 / Docker-C3
  Example of running C3 (https://github.com/FSecureLABS/C3) in a Docker container
  ☆27Updated 3 years ago
• inzlain / sameuser
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Updated 2 years ago
• audibleblink / davil
  leaking net-ntlm with webdav
  ☆25Updated 4 years ago
• boku7 / SCMKit
  Source Code Management Attack Toolkit
  ☆12Updated 2 years ago
• moloch-- / DarkLoadLibrary
  LoadLibrary for offensive operations
  ☆33Updated 3 years ago
• rmdavy / AmsiPEBWalkVBAx64
  ☆15Updated 5 years ago
• EspressoCake / Needle_Sift_BOF
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Updated 3 years ago
• kyleavery / scarecrow_wrapper
  ☆37Updated 3 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• MrDomainAdmin / LyinEagle
  Python C2 with JScript Implant
  ☆14Updated last year
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 3 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 2 years ago
• NotMedic / SocksLauncher
  ☆14Updated 5 years ago
• jnqpblc / SharpReg
  SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.
  ☆29Updated 5 years ago
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆17Updated last year
• xenoscr / offsecops-shared-library
  A collection of scripts used to support an OffSecOps pipeline.
  ☆14Updated 4 years ago
• tid4l / SharpCGHunter
  Receive the status of Windows Defender Credential Guard on network hosts.
  ☆27Updated 4 years ago