Alternatives and similar repositories for CVE-2023-21768

Users that are interested in CVE-2023-21768 are comparing it to the libraries listed below

• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆45Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆98Updated last year
• WafflesExploits / CobaltStrike-YARA-Bypass-f0b627fc
  Repository of scripts from my blog post on bypassing the YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellco…
  ☆41Updated 8 months ago
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆47Updated last year
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆84Updated 2 years ago
• roberreigada / LsassUnhooker
  Little program written in C# to bypass EDR hooks and dump the content of the lsass process
  ☆61Updated 4 years ago
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆140Updated 3 years ago
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆113Updated 3 weeks ago
• battleoverflow / lsass-dump
  Simple LSASS Dumper created using C++ as an alternative to using Mimikatz memory dumper
  ☆55Updated last year
• N1k0la-T / CVE-2023-21707
  CVE-2023-21707 EXP
  ☆28Updated last year
• killvxk / CVE-2024-38193-Nephster
  ☆58Updated 7 months ago
• iss4cf0ng / DuplexSpyCS
  Remote Access Tool written in C#
  ☆41Updated this week
• bobby-tablez / VBScrambler
  A Python-based VBScript Code Obfuscator
  ☆39Updated 2 months ago
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆87Updated 3 months ago
• Octoberfest7 / CVE-2023-36874_BOF
  Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
  ☆206Updated last year
• Ethicalrat / Evasive-Loader
  Evasive loader to bypass static detection
  ☆58Updated last year
• kyxiaxiang / Safetasklist
  Help red teams find opsec processes during engagements
  ☆41Updated 6 months ago
• Vasco0x4 / ShadeLoader
  ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
  ☆40Updated last month
• NtDallas / MemLoader
  Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible
  ☆200Updated last week
• Kara-4search / SysCall_ShellcodeLoad_Csharp
  Load shellcode via syscall
  ☆54Updated 3 years ago
• P0x00 / ASPX_Bonanza
  ASPX ShellCode Loader
  ☆50Updated last year
• Malwareman007 / CVE-2023-27326
  VM Escape for Parallels Desktop <18.1.1
  ☆37Updated 2 years ago
• Wh04m1001 / IFaultrepElevatedDataCollectionUAC
  ☆133Updated 2 years ago
• hackerhouse-opensource / ColorDataProxyUACBypass
  Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…
  ☆138Updated 2 years ago
• d0rb / CVE-2023-36874
  This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Wi…
  ☆77Updated last year
• aleenzz / ChromeExtensionInstall
  Silently Install Chrome Extension For Persistence
  ☆88Updated 11 months ago
• absholi7ly / CVE-2025-0282-Ivanti-exploit
  CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…
  ☆47Updated 5 months ago
• Haunted-Banshee / ErebusGate
  ErebusGate for Nim Bypass AV/EDR
  ☆161Updated 2 years ago
• Octoberfest7 / KillDefender
  A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity
  ☆32Updated 3 years ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆78Updated 2 years ago