Alternatives and similar repositories for HardHatC2:

Users that are interested in HardHatC2 are comparing it to the libraries listed below

• decoder-it / LocalPotato
  ☆685Updated last year
• NUL0x4C / AtomLdr
  A DLL loader with advanced evasive features
  ☆700Updated last year
• Octoberfest7 / Inline-Execute-PE
  Execute unmanaged Windows executables in CobaltStrike Beacons
  ☆653Updated last year
• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,179Updated last year
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆392Updated last year
• assume-breach / Home-Grown-Red-Team
  ☆696Updated 11 months ago
• wietze / HijackLibs
  Project for tracking publicly disclosed DLL Hijacking opportunities.
  ☆708Updated this week
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆424Updated last year
• r4wd3r / Suborner
  ☆469Updated 3 months ago
• ZeroMemoryEx / Terminator
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆947Updated last year
• skahwah / SQLRecon
  A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
  ☆694Updated last month
• 0xHossam / Killer
  Killer is a simple tool designed to bypass AV/EDR security tools using various evasive techniques.
  ☆782Updated 7 months ago
• WKL-Sec / HiddenDesktop
  HVNC for Cobalt Strike
  ☆1,190Updated last year
• antonioCoco / JuicyPotatoNG
  Another Windows Local Privilege Escalation from Service Account to System
  ☆831Updated 2 years ago
• Flangvik / NetLoader
  Loads any C# binary in mem, patching AMSI + ETW.
  ☆811Updated 3 years ago
• SaadAhla / FilelessPELoader
  Loading Remote AES Encrypted PE in memory , Decrypted it and run it
  ☆914Updated last year
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆365Updated 4 months ago
• ricardojoserf / NativeDump
  Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)
  ☆566Updated 2 months ago
• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,157Updated 9 months ago
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆506Updated 6 months ago
• daem0nc0re / PrivFu
  Kernel mode WinDbg extension and PoCs for token privilege investigation.
  ☆834Updated last month
• wh0amitz / KRBUACBypass
  UAC Bypass By Abusing Kerberos Tickets
  ☆492Updated last year
• Aetsu / OffensivePipeline
  OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team…
  ☆801Updated last year
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆564Updated 7 months ago
• 0xb11a1 / yetAnotherObfuscator
  C# obfuscator that bypass windows defender
  ☆714Updated last year
• JoelGMSec / Invoke-Stealth
  Simple & Powerful PowerShell Script Obfuscator
  ☆549Updated last year
• Idov31 / MrKaplan
  MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
  ☆255Updated last year
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,167Updated last year
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆515Updated 2 years ago
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆903Updated 8 months ago