Alternatives and similar repositories for havoc2nginx

Users that are interested in havoc2nginx are comparing it to the libraries listed below

• Ghost53574 / havoc_profile_generator

  View on GitHub
  Havoc C2 profile generator
  ☆101Jul 15, 2025Updated 7 months ago
• Tw1sm / aesKrbKeyGen

  View on GitHub
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆81Jun 1, 2022Updated 3 years ago
• Orange-Cyberdefense / EDRSnowblast

  View on GitHub
  This project is an EDRSandblast fork, adding some features and custom pieces of code.
  ☆25Sep 29, 2023Updated 2 years ago
• RalfHacker / ExchangeCheckPack

  View on GitHub
  ☆10Jun 26, 2024Updated last year
• zhzyker / zhzyker

  View on GitHub
  ☆12Apr 26, 2022Updated 3 years ago
• ZERODETECTION / Havoc_Demon_API_Hashing

  View on GitHub
  Rehashing APIs to prevent hash based detection
  ☆14Jan 7, 2025Updated last year
• lsecqt / Red-Teaming-Army

  View on GitHub
  ☆13Jul 26, 2025Updated 6 months ago
• y00ga-sec / Trustify

  View on GitHub
  Attack Active Directory Trusts with a single tool
  ☆14Jan 15, 2025Updated last year
• netero1010 / ClipboardHistoryThief

  View on GitHub
  POC tool to extract all persistent clipboard history data from clipboard service process memory
  ☆58Jul 31, 2024Updated last year
• ChoiSG / bin2sideload

  View on GitHub
  ☆11Nov 12, 2023Updated 2 years ago
• C5Hackr / ARM64_AmsiPatch

  View on GitHub
  ☆21Jan 8, 2026Updated last month
• Xre0uS / KiD

  View on GitHub
  A malicious keyboard that delivers a multi-staged attack, consisting of a trojan payload which can bypass antivirus, with Windows machine…
  ☆17Mar 23, 2025Updated 10 months ago
• p0dalirius / CrackedNTDStoXLSX

  View on GitHub
  A python tool to generate an Excel file linking the list of cracked accounts and their LDAP attributes.
  ☆12Jan 31, 2025Updated last year
• Ap3x / COFF-Loader

  View on GitHub
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆64Dec 16, 2023Updated 2 years ago
• simondotsh / DirSync

  View on GitHub
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆29Apr 26, 2023Updated 2 years ago
• m7rick / Havoc-DLLHijack

  View on GitHub
  A tool to assist DLL hijacking via the Havoc GUI
  ☆12Jan 9, 2024Updated 2 years ago
• mdsecactivebreach / TakeATest

  View on GitHub
  ☆19Mar 9, 2021Updated 4 years ago
• NetSPI / ruler

  View on GitHub
  A tool to abuse Exchange services
  ☆12Mar 18, 2024Updated last year
• capt-meelo / AggressorScripts

  View on GitHub
  Collection of scripts that I created to make my life easier.
  ☆12May 10, 2021Updated 4 years ago
• RedSiege / Delta-Encoder

  View on GitHub
  ☆18Jun 25, 2024Updated last year
• EspressoCake / MITRE_ATTACK_CLI

  View on GitHub
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆17Jan 5, 2023Updated 3 years ago
• 0xflux / Scil

  View on GitHub
  System Call Integrity Layer - experimental security research
  ☆25Jan 31, 2026Updated 2 weeks ago
• 0xAbdullah / Offensive-Snippets

  View on GitHub
  A repository with my code snippets for research/education purposes.
  ☆52Jul 28, 2023Updated 2 years ago
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated 11 months ago
• nickvourd / Rocabella

  View on GitHub
  Sniffing files generator
  ☆61Feb 24, 2025Updated 11 months ago
• jfjallid / go-cmloot

  View on GitHub
  A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)
  ☆16Jul 27, 2024Updated last year
• dmcxblue / Claude-C2

  View on GitHub
  Utilizng an MCP Server to communicate with your C2
  ☆86May 15, 2025Updated 9 months ago
• codewhitesec / daphne

  View on GitHub
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆18Aug 3, 2023Updated 2 years ago
• nickvourd / random_c2_profile

  View on GitHub
  Cobalt Strike random C2 Profile generator
  ☆16Nov 10, 2025Updated 3 months ago
• Octoberfest7 / Proxy_Egress_Persistence

  View on GitHub
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆34Sep 15, 2022Updated 3 years ago
• boku7 / x64win-DynamicNoNull-WinExec-PopCalc-Shellcode

  View on GitHub
  64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free
  ☆65Mar 8, 2023Updated 2 years ago
• rasta-mouse / Crystal-Loaders

  View on GitHub
  A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike
  ☆184Oct 29, 2025Updated 3 months ago
• nickvourd / Mini-Tools

  View on GitHub
  Custom mini tools during Red Teaming engagements
  ☆23Jan 20, 2026Updated 3 weeks ago
• MaorSabag / fileSearcher

  View on GitHub
  A simple BOF (Beacon Object File) to search files in the system
  ☆15Dec 2, 2023Updated 2 years ago
• layer8secure / ConvertHound

  View on GitHub
  An easy way to convert BloodHound output files into data that can be imported into reporting software like Dradis and Plextrac. Built by …
  ☆18Oct 15, 2020Updated 5 years ago
• hackerhouse-opensource / NoFaxGiven

  View on GitHub
  Code Execution & Persistence in NETWORK SERVICE FAX Service
  ☆34Feb 2, 2026Updated last week
• latortuga71 / SharpChisel-NG

  View on GitHub
  ☆39Sep 25, 2023Updated 2 years ago
• RedSiege / RandomScripts

  View on GitHub
  Scripts for public use that we've randomly written, or have updated from other people's work.
  ☆40Jun 25, 2024Updated last year
• optiv / airCross

  View on GitHub
  airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authenticatio…
  ☆48Jul 19, 2022Updated 3 years ago