Alternatives and similar repositories for ZigStrike

Users that are interested in ZigStrike are comparing it to the libraries listed below

• cpu0x00 / Ghost
  Evasive shellcode loader
  ☆384Updated 11 months ago
• praetorian-inc / ChromeAlone
  A tool to transform Chromium browsers into a C2 Implant
  ☆473Updated 3 weeks ago
• Maldev-Academy / ExecutePeFromPngViaLNK
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆445Updated 10 months ago
• logangoins / Krueger
  Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC
  ☆379Updated 8 months ago
• CICADA8-Research / RemoteKrbRelay
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆616Updated 4 months ago
• decoder-it / KrbRelayEx
  ☆335Updated last month
• TwoSevenOneT / EDR-Freeze
  EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.
  ☆245Updated this week
• rad9800 / BootExecuteEDR
  ☆402Updated 9 months ago
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆237Updated 8 months ago
• An0nUD4Y / AV-EDR-Lab-Environment-Setup
  AV/EDR Lab environment setup references to help in Malware development
  ☆404Updated 7 months ago
• Offensive-Panda / ShadowDumper
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆558Updated 4 months ago
• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆246Updated 5 months ago
• V-i-x-x / AMSI-WRITE-RAID-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆297Updated 5 months ago
• jfjallid / go-secdump
  Tool to remotely dump secrets from the Windows registry
  ☆490Updated 3 months ago
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆607Updated last year
• Teach2Breach / Tempest
  A command and control framework written in rust.
  ☆370Updated 3 weeks ago
• matro7sh / myph
  shellcode loader for your evasion needs
  ☆343Updated 4 months ago
• Tylous / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆338Updated 2 years ago
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆274Updated 11 months ago
• logangoins / Cable
  .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
  ☆394Updated 2 months ago
• andrecrafts / hide-payload-in-images
  A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Paylo…
  ☆187Updated 6 months ago
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆297Updated last year
• lolc2 / lolc2.github.io
  lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
  ☆243Updated 3 months ago
• senzee1984 / Amsi_Bypass_In_2023
  Amsi Bypass payload that works on Windwos 11
  ☆376Updated 2 years ago
• arosenmund / defcon33_silence_kill_edr
  ☆322Updated last month
• Maldev-Academy / MaldevAcademyLdr.1
  ☆363Updated 2 years ago
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆527Updated 5 months ago
• lypd0 / DeadPotato
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆439Updated last year
• safedv / RustiveDump
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆367Updated 5 months ago
• wietze / ArgFuscator.net
  ArgFuscator.net is an open-source, stand-alone web application that helps generate obfuscated command lines for common system-native exec…
  ☆371Updated 5 months ago