Alternatives and similar repositories for WAMBam

Users that are interested in WAMBam are comparing it to the libraries listed below

• morRubin / NegoExRelay
  ☆89Updated 2 years ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆123Updated 3 years ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• EspressoCake / Process_Protection_Level_BOF
  ☆59Updated 3 years ago
• HackmichNet / SharpAzToken
  ☆61Updated last year
• mitchmoser / LACheck
  ☆90Updated 3 years ago
• leftp / DPAPISnoop
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆134Updated 10 months ago
• bohops / DynamicDotNet
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆142Updated last year
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆85Updated 2 years ago
• waawaa / AMSI_Rubeus_bypass
  ☆70Updated 2 years ago
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆115Updated 2 years ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆82Updated 7 months ago
• tothi / stager_libpeconv
  A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading
  ☆84Updated 2 years ago
• EspressoCake / BOF_Development_Docker
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆49Updated 2 years ago
• MrAle98 / Sliver-PortBender
  Sliver extension performing TCP redirection tasks without performing cross-process injection.
  ☆66Updated 6 months ago
• n00py / GetFGPP
  Get Fine Grained Password Policy
  ☆70Updated 3 months ago
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆98Updated 2 years ago
• fortalice / pyldapsearch
  Tool for issuing manual LDAP queries which offers bofhound compatible output
  ☆52Updated last year
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆103Updated 3 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆56Updated 3 years ago
• 0xe7 / RoastInTheMiddle
  ☆71Updated 3 weeks ago
• eladshamir / BadWindowsService
  An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities
  ☆61Updated 2 years ago
• antroguy / LocklessBof
  Lockless BOF
  ☆75Updated 2 months ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆91Updated 2 years ago
• EspressoCake / BeaconDownloadSync
  ☆94Updated 3 years ago
• Crypt0s / DelegationBOF
  ☆141Updated 3 years ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆90Updated 2 years ago
• latortuga71 / SharpChisel-NG
  ☆36Updated last year
• tothi / SharpStay
  .NET project for installing Persistence
  ☆63Updated 3 years ago
• zimnyaa / noWatch
  Implant drop-in for EDR testing
  ☆140Updated last year