Alternatives and similar repositories for Random-CSharpTools:

Users that are interested in Random-CSharpTools are comparing it to the libraries listed below

• anthemtotheego / SharpCradle
  ☆279Updated 4 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆231Updated 2 years ago
• SpiderLabs / SharpCompile
  SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…
  ☆290Updated 4 years ago
• 0xbadjuju / WheresMyImplant
  A Bring Your Own Land Toolkit that Doubles as a WMI Provider
  ☆285Updated 6 years ago
• threatexpress / metatwin
  The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…
  ☆343Updated 4 months ago
• n1xbyte / donutCS
  dem sharp donuts
  ☆193Updated 2 years ago
• b4rtik / RedPeanut
  RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
  ☆327Updated last year
• GhostPack / SharpRoast
  DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.
  ☆252Updated 6 years ago
• b4rtik / SharpMiniDump
  Create a minidump of the LSASS process from memory
  ☆260Updated 2 years ago
• anthemtotheego / SharpExec
  ☆348Updated 3 years ago
• Cn33liz / MSBuildShell
  MSBuildShell, a Powershell Host running within MSBuild.exe
  ☆287Updated 5 years ago
• hoangprod / AndrewSpecial
  AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
  ☆386Updated 5 years ago
• endgameinc / ClrGuard
  ☆216Updated 7 years ago
• Cybereason / Invoke-WMILM
  ☆228Updated 6 years ago
• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆257Updated 6 years ago
• karttoon / trigen
  Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.
  ☆204Updated 7 years ago
• b4rtik / ATPMiniDump
  Evading WinDefender ATP credential-theft
  ☆254Updated 5 years ago
• Mr-Un1k0d3r / Windows-SignedBinary
  ☆253Updated 6 years ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆285Updated 7 years ago
• 0xbadjuju / rundotnetdll32
  A tool to run .Net DLLs from the command line
  ☆102Updated 6 years ago
• Kudaes / LOLBITS
  ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …
  ☆214Updated 2 years ago
• b4rtik / metasploit-execute-assembly
  Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
  ☆346Updated 4 years ago
• 3gstudent / CLR-Injection
  Use CLR to inject all the .NET apps
  ☆185Updated 4 years ago
• decoder-it / powershellveryless
  Constrained Language Mode + AMSI bypass all in one
  ☆156Updated 5 years ago
• Cn33liz / CScriptShell
  CScriptShell, a Powershell Host running within cscript.exe
  ☆160Updated 8 years ago
• nettitude / Invoke-PowerThIEf
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆130Updated last month
• matterpreter / Shhmon
  Neutering Sysmon via driver unload
  ☆227Updated 2 years ago
• FuzzySecurity / BlueHatIL-2020
  BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
  ☆145Updated 5 years ago
• bohops / GhostBuild
  GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects
  ☆248Updated 4 years ago
• Mr-Un1k0d3r / Shellcoding
  Shellcoding utilities
  ☆222Updated 4 years ago