3. Doublepulsar Usermode InjectorA utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use in testing detection techniques or other security research.
7. chainsawRapidly Search and Hunt through Windows Event Logs
9. dotnet-gargoyleA spiritual .NET equivalent to the Gargoyle memory scanning evasion technique