Alternatives and similar repositories for nrat

Users that are interested in nrat are comparing it to the libraries listed below

• Arr3stY0u / geacon_plus
  CobaltStrike beacon written in golang
  ☆27Updated 2 years ago
• D00Movenok / goMalleable
  🔎🪲 Malleable C2 profiles parser and assembler written in golang
  ☆67Updated last year
• Ne0nd0g / merlin-cli
  gRPC client for the Merlin Server
  ☆23Updated 5 months ago
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆85Updated 2 years ago
• 7h3w4lk3r / Kill-Floor
  AV/EDR killer using BYOVD technique
  ☆35Updated last year
• truonghuuphuc / CVE-2024-39943-Poc
  CVE-2024-39943 rejetto HFS (aka HTTP File Server) 3 before 0.52.10 on Linux, UNIX, and macOS allows OS command execution by remote authen…
  ☆20Updated last year
• florylsk / NtDump
  Indirect NT syscalls LSASS dumper.
  ☆46Updated 2 years ago
• MaorSabag / interactive-execute-shellcode
  A simple PoC of injection shellcode into a remote process and get the output using namepipe
  ☆43Updated last year
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆43Updated 4 months ago
• jm33-m0 / go-lpe
  A collection of weaponized LPE exploits written in Go
  ☆53Updated 8 months ago
• tijme / kernel-mii
  Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.
  ☆83Updated 2 years ago
• weaselsec / GodPotato-Aggressor-Script
  ☆89Updated last year
• qwqdanchun / ScreenShot-BOF
  ☆41Updated 2 years ago
• Acucarinho / havoc-obfuscator
  Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.
  ☆36Updated last month
• c3r3br4t3 / ShadowRDP
  ☆73Updated last year
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆51Updated last year
• elephacking / officedump
  Dump document encryption password from Office process memory
  ☆39Updated 2 years ago
• zer1t0 / keydump
  Dump Linux keyrings
  ☆20Updated last year
• wabzsy / gonut
  Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.
  ☆59Updated 2 years ago
• W01fh4cker / CVE-2023-20198-RCE
  CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands.
  ☆41Updated last year
• akkuman / gSigFlip
  A SigFlip implement in golang
  ☆46Updated 3 years ago
• timwhitez / Doge-BlockDLLs
  Preventing 3rd Party DLLs from Injecting into your Malware
  ☆25Updated 4 years ago
• BronzeTicket / ClipboardWindow-Inject
  CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
  ☆68Updated 3 years ago
• Ridter / netsync
  Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.
  ☆59Updated 7 months ago
• SySS-Research / MAT
  This tool, programmed in C#, allows for the fast discovery and exploitation of vulnerabilities in MSSQL servers
  ☆54Updated last year
• S3cur3Th1sSh1t / Sharp-HackBrowserData
  C# binary with embeded golang hack-browser-data
  ☆99Updated 3 years ago
• BlackINT3 / RedKits
  Cyber Security Reseraching and RedTeam Kits Code
  ☆43Updated 3 years ago
• BlackSnufkin / HolyGrail
  BYOVD hunter to help prioritize windows drivers worth manual analysis
  ☆37Updated last month
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆99Updated 2 years ago
• b1-team / phantom
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆17Updated 2 years ago