Alternatives and similar repositories for dumping_lsass

Users that are interested in dumping_lsass are comparing it to the libraries listed below

• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆185Updated 6 months ago
• SenSecurity / Founding
  Founding is a generator that will create a loader encrypted or obfuscated with different execution types
  ☆95Updated 2 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆177Updated 5 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆125Updated 4 months ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆154Updated last year
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆270Updated 6 months ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆264Updated 3 weeks ago
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆186Updated last year
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆159Updated 3 months ago
• yehia-mamdouh / ZeroProbe
  ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…
  ☆107Updated 8 months ago
• wariv / DarkLnk
  Build sneaky & malicious LNK files.
  ☆151Updated 3 months ago
• stevenyu113228 / BloodHound-MCP
  ☆154Updated 7 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆209Updated 4 months ago
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆162Updated 9 months ago
• rad9800 / byor
  ☆157Updated 5 months ago
• RedSiege / Chromatophore
  Utilities for obfuscating shellcode
  ☆94Updated last month
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆269Updated last month
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆149Updated 3 months ago
• LeighlinRamsay / GunnerC2
  ☆145Updated last month
• 0xflux / Wyrm
  The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.
  ☆294Updated last week
• cybersectroll / TrollAMSI
  ☆184Updated 5 months ago
• cybrly / badsuccessor
  ☆117Updated 5 months ago
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆113Updated 4 months ago
• badsectorlabs / ludus_adaptix_c2
  An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts
  ☆170Updated 5 months ago
• akamai / BadSuccessor
  ☆201Updated 5 months ago
• kfallahi / UnderlayCopy
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆185Updated 2 weeks ago
• loosehose / SilentButDeadly
  SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connecti…
  ☆236Updated last week
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆209Updated last year
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆199Updated 9 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆220Updated 6 months ago