Alternatives and similar repositories for HardHatC2:

Users that are interested in HardHatC2 are comparing it to the libraries listed below

• decoder-it / LocalPotato
  ☆683Updated last year
• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,171Updated last year
• Octoberfest7 / Inline-Execute-PE
  Execute unmanaged Windows executables in CobaltStrike Beacons
  ☆650Updated last year
• 0xHossam / Killer
  Killer is a simple tool designed to bypass AV/EDR security tools using various evasive techniques.
  ☆774Updated 6 months ago
• ZeroMemoryEx / Terminator
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆938Updated last year
• NUL0x4C / AtomLdr
  A DLL loader with advanced evasive features
  ☆688Updated last year
• assume-breach / Home-Grown-Red-Team
  ☆683Updated 9 months ago
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆386Updated last year
• SaadAhla / FilelessPELoader
  Loading Remote AES Encrypted PE in memory , Decrypted it and run it
  ☆908Updated last year
• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,148Updated 8 months ago
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆417Updated last year
• antonioCoco / JuicyPotatoNG
  Another Windows Local Privilege Escalation from Service Account to System
  ☆822Updated 2 years ago
• Flangvik / NetLoader
  Loads any C# binary in mem, patching AMSI + ETW.
  ☆808Updated 3 years ago
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,166Updated last year
• tastypepperoni / PPLBlade
  Protected Process Dumper Tool
  ☆528Updated last year
• WKL-Sec / HiddenDesktop
  HVNC for Cobalt Strike
  ☆1,181Updated last year
• BC-SECURITY / Malleable-C2-Profiles
  Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.
  ☆348Updated last year
• wietze / HijackLibs
  Project for tracking publicly disclosed DLL Hijacking opportunities.
  ☆695Updated last month
• skahwah / SQLRecon
  A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
  ☆677Updated last week
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,059Updated last year
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆364Updated 3 months ago
• daem0nc0re / PrivFu
  Kernel mode WinDbg extension and PoCs for token privilege investigation.
  ☆828Updated this week
• r4wd3r / Suborner
  ☆467Updated 2 months ago
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆562Updated 6 months ago
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD) ( Microsoft Won)
  ☆917Updated last year
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆895Updated 7 months ago
• NUL0x4C / AtomPePacker
  A Highly capable Pe Packer
  ☆689Updated 2 years ago
• icyguider / Nimcrypt2
  .NET, PE, & Raw Shellcode Packer/Loader Written in Nim
  ☆762Updated 2 years ago
• Tylous / SourcePoint
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,056Updated 9 months ago