Alternatives and similar repositories for keydump

Users that are interested in keydump are comparing it to the libraries listed below

• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆40Updated last year
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆32Updated last year
• horizon3ai / CVE-2024-9465
  Proof of Concept Exploit for CVE-2024-9465
  ☆29Updated 8 months ago
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆31Updated last year
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆31Updated 10 months ago
• sinsinology / CVE-2024-29855
  PoC for the Veeam Recovery Orchestrator Authentication CVE-2024-29855
  ☆18Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated 11 months ago
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆24Updated 9 months ago
• HulkOperator / AuthStager
  ☆55Updated 8 months ago
• Mazzy-Stars / lain_c2
  command control framework
  ☆21Updated this week
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆39Updated last year
• Quack2332 / Simple-C-Implant
  ☆12Updated 10 months ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 7 months ago
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆62Updated last week
• Cerbersec / pyMetaTwin
  Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform
  ☆17Updated last year
• affix / rusty-hollow
  Unix Process hollowing in rust
  ☆22Updated 6 months ago
• Cyxow / CVE-2024-3183-POC
  POC for CVE-2024-3183 (FreeIPA Rosting)
  ☆22Updated 10 months ago
• Maldev-Academy / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆47Updated last month
• watchtowrlabs / CVE-2025-0282
  Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)
  ☆29Updated 5 months ago
• c3r3br4t3 / ShadowRDP
  ☆71Updated last year
• Quack2332 / Simple-.NET-Obfuscator-PoC
  ☆20Updated last year
• sinsinology / CVE-2024-5009
  Exploit for CVE-2024-5009
  ☆13Updated 11 months ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆40Updated 10 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆48Updated 5 months ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆49Updated 4 months ago
• y00ga-sec / Forensike
  Remotely dump NT hashes through Windows Crash dumps
  ☆27Updated 7 months ago
• ajm4n / TermHound
  ☆26Updated 7 months ago
• EvilBytecode / Amsi-Patch-Updated-2025
  How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.
  ☆17Updated 2 months ago
• almounah / GoDroplets
  Go Shellcode Loader to be Integrated in Exploration C2
  ☆27Updated 4 months ago
• KingOfTheNOPs / ChangeWallpaper-BOF
  Cobalt Strike Beacon Object File to to change the user's desktop wallpaper
  ☆14Updated last year