Alternatives and similar repositories for havoc-obfuscator

Users that are interested in havoc-obfuscator are comparing it to the libraries listed below

• 123ojp / GREtunnel-scanner
  This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion
  ☆92Updated 4 months ago
• MaorSabag / impacket-jump
  Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…
  ☆113Updated last month
• SecTheBit / ZoomBotC2
  ☆57Updated 6 months ago
• zarkones / netescape
  Malware traffic obfuscation library
  ☆38Updated 5 months ago
• CultCornholio / RedTeamTP
  ☆86Updated 7 months ago
• deriv-security / MeetC2
  (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.
  ☆129Updated 4 months ago
• dmcxblue / Claude-C2
  Utilizng an MCP Server to communicate with your C2
  ☆86Updated 7 months ago
• warpedatom / OffsetInspect
  PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.
  ☆31Updated last week
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆124Updated 6 months ago
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆76Updated last year
• 0xthirteen / WMI_Proc_Dump
  Dump processes over WMI with MSFT_MTProcess
  ☆81Updated 3 months ago
• Teach2Breach / schtask
  Rust implementation, creating a scheduled task programmatically with user logon trigger.
  ☆47Updated 7 months ago
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆86Updated 10 months ago
• kas-sec / version.dll-sideloading
  sideloading PoC using onedrive.exe & version.dll
  ☆87Updated 2 months ago
• HulkOperator / AuthStager
  ☆59Updated last year
• EvilWhales / nightshade
  ☆35Updated 6 months ago
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆100Updated 6 months ago
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆151Updated 5 months ago
• olafhartong / ETWLocksmith
  A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…
  ☆61Updated 5 months ago
• EvilWhales / Cobalt-Strike-Ultimate-Arsenal
  Cobalt Strike module x loader x profile x wike / A public collection of open resources for Cobalt Strike (only legal use in Red Team and …
  ☆104Updated last month
• lsecqt / SessionView
  A portable C# utility for enumerating local and remote windows sessions
  ☆53Updated last week
• dis0rder0x00 / stillepost
  Using Chromium-based browsers as a proxy for C2 traffic.
  ☆137Updated last month
• MWR-CyberSec / AD-CS-Forest-Exploiter
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆103Updated 2 years ago
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆104Updated 5 months ago
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆89Updated 10 months ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆46Updated last year
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆127Updated last year
• 0xTriboulet / ai-postex
  Proof-of-concept implementation of AI-enabled postex DLLs
  ☆53Updated 4 months ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated 2 years ago