Alternatives and similar repositories for nrat

Users that are interested in nrat are comparing it to the libraries listed below

• jm33-m0 / go-lpe
  A collection of weaponized LPE exploits written in Go
  ☆53Updated last year
• Arr3stY0u / geacon_plus
  CobaltStrike beacon written in golang
  ☆27Updated 2 years ago
• D00Movenok / goMalleable
  🔎🪲 Malleable C2 profiles parser and assembler written in golang
  ☆65Updated last year
• Binject / exec2shell
  Extracts TEXT section of a PE, ELF, or Mach-O executable to shellcode
  ☆105Updated 2 years ago
• Ne0nd0g / merlin-cli
  gRPC client for the Merlin Server
  ☆27Updated 9 months ago
• akkuman / gSigFlip
  A SigFlip implement in golang
  ☆51Updated 4 years ago
• 7h3w4lk3r / Kill-Floor
  AV/EDR killer using BYOVD technique
  ☆43Updated last year
• florylsk / NtDump
  Indirect NT syscalls LSASS dumper.
  ☆46Updated 2 years ago
• BronzeTicket / ClipboardWindow-Inject
  CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
  ☆68Updated 3 years ago
• wabzsy / gonut
  Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.
  ☆64Updated 2 years ago
• tijme / kernel-mii
  Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.
  ☆85Updated 2 years ago
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆83Updated 3 years ago
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆102Updated 2 years ago
• timwhitez / Doge-BlockDLLs
  Preventing 3rd Party DLLs from Injecting into your Malware
  ☆25Updated 4 years ago
• EvilBytecode / Enable-All-Tokens
  Enable-All-Tokens is a Go-based project designed to adjust and enable a list of specified privileges for the current process token on a W…
  ☆10Updated 9 months ago
• MaorSabag / interactive-execute-shellcode
  A simple PoC of injection shellcode into a remote process and get the output using namepipe
  ☆44Updated 2 years ago
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆50Updated 8 months ago
• qwqdanchun / ScreenShot-BOF
  ☆41Updated 2 years ago
• S3cur3Th1sSh1t / Sharp-HackBrowserData
  C# binary with embeded golang hack-browser-data
  ☆100Updated 4 years ago
• SaadAhla / Anti-Sandbox
  ☆48Updated 2 months ago
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆51Updated last year
• weaselsec / GodPotato-Aggressor-Script
  ☆89Updated 2 years ago
• kensh1ro / Willie-C2
  A Golang implant that uses Discord as a C2 team server
  ☆65Updated last year
• CodeXTF2 / BusySleepBeacon
  This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…
  ☆36Updated 4 years ago
• timwhitez / Doge-PX
  DPX - the Doge Packer for eXecutables
  ☆30Updated 4 years ago
• netero1010 / ClipboardHistoryThief
  POC tool to extract all persistent clipboard history data from clipboard service process memory
  ☆58Updated last year
• BOFs / BOFs
  Beacon Object Files.
  ☆36Updated last year
• seahop / titan
  Titan: A generic user defined reflective DLL for Cobalt Strike
  ☆85Updated 3 years ago
• Nicolas-Arsenault / Havoc-C2-RCE-2024
  Abusing SSRF to deliver an authenticated command injection payload
  ☆30Updated 5 months ago
• sliverarmory / malasada
  Linux Shared Library to Shellcode Loader
  ☆59Updated this week