Alternatives and similar repositories for merlin

Users that are interested in merlin are comparing it to the libraries listed below

• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆207Updated last year
• MythicAgents / Athena
  ☆210Updated 5 months ago
• d1rkmtrr / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆148Updated 2 years ago
• 3NailsInfoSec / DCVC2
  A Golang Discord C2 unlike any other. DCVC2 uses RTP packets over a voice channel to transmit all data leaving no operational traces in t…
  ☆133Updated 11 months ago
• nettitude / Aladdin
  ☆222Updated 2 years ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆103Updated 3 years ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆164Updated 10 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated 2 years ago
• gh0x0st / wanderer
  An open-source process injection enumeration tool written in C#
  ☆173Updated 2 years ago
• jconwell / secret_handshake
  A prototype malware C2 channel using x509 certificates over mTLS
  ☆152Updated last year
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆85Updated 3 years ago
• SafeBreach-Labs / wd-pretender
  ☆132Updated 2 years ago
• NVISOsecurity / pyCobaltHound
  pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…
  ☆136Updated 2 years ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆197Updated 3 months ago
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆125Updated 2 years ago
• amauricio / junkshell
  ☆71Updated 7 months ago
• nickvangilder / most-average-c2-ever
  The most average C2 ever (MACE)
  ☆97Updated 3 years ago
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆74Updated 3 years ago
• byinarie / teams_dump
  PoC for dumping and decrypting cookies in the latest version of Microsoft Teams
  ☆131Updated last year
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆145Updated 2 years ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆157Updated 3 years ago
• njcve / inflate.py
  Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
  ☆122Updated 3 years ago
• sensepost / mail-in-the-middle
  ☆109Updated 11 months ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆145Updated last year
• smokeme / airstrike
  ☆170Updated last year
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆74Updated 2 years ago
• api0cradle / RedTeamScripts
  Just some random Red Team Scripts that can be useful
  ☆152Updated last year
• sliverarmory / armory
  The Official Sliver Armory
  ☆118Updated 6 months ago
• Laokoon-SecurITy / Cortex-XDR-Config-Extractor
  Cortex XDR Config Extractor
  ☆135Updated 2 years ago