Alternatives and similar repositories for merlin:

Users that are interested in merlin are comparing it to the libraries listed below

• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆144Updated last year
• MythicAgents / Athena
  ☆195Updated last month
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆155Updated 3 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆136Updated last year
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆90Updated last month
• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆200Updated last year
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆92Updated 3 years ago
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆396Updated 9 months ago
• icyguider / LatLoader
  PoC module to demonstrate automated lateral movement with the Havoc C2 framework.
  ☆290Updated last year
• HavocFramework / Modules
  Modules used by the Havoc Framework
  ☆224Updated 9 months ago
• TunnelGRE / Percino
  Evasive Golang Loader
  ☆129Updated 8 months ago
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆135Updated last year
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆106Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆195Updated 9 months ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆154Updated 2 years ago
• NVISOsecurity / pyCobaltHound
  pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…
  ☆137Updated last year
• winsecurity / Offensive-C-Sharp
  ☆164Updated 2 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆169Updated 2 years ago
• cybersectroll / TrollAMSI
  ☆171Updated 4 months ago
• souzomain / Shaco
  Shaco is a linux agent for havoc
  ☆156Updated last year
• SaadAhla / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆145Updated last year
• NUL0x4C / NoRunPI
  Run Your Payload Without Running Your Payload
  ☆180Updated 2 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆194Updated 2 years ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆299Updated last year
• Ghost53574 / havoc_profile_generator
  Havoc C2 profile generator
  ☆74Updated 5 months ago
• mandiant / msi-search
  ☆274Updated last year
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆257Updated 2 years ago
• nettitude / Tartarus-TpAllocInject
  ☆181Updated last year
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆180Updated 6 months ago