Alternatives and similar repositories for merlin

Users that are interested in merlin are comparing it to the libraries listed below

• MythicAgents / Athena
  ☆213Updated last month
• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆207Updated last year
• nettitude / Aladdin
  ☆223Updated 2 years ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆150Updated 2 years ago
• njcve / inflate.py
  Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
  ☆122Updated 3 years ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆165Updated last year
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆105Updated 3 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆147Updated 2 years ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆109Updated 2 years ago
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆129Updated 2 years ago
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• SafeBreach-Labs / wd-pretender
  ☆132Updated 2 years ago
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆72Updated 4 years ago
• gh0x0st / wanderer
  An open-source process injection enumeration tool written in C#
  ☆174Updated 2 years ago
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆56Updated last week
• NVISOsecurity / pyCobaltHound
  pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…
  ☆137Updated 2 years ago
• gatariee / Winton
  Command and Control (C2) framework
  ☆132Updated 6 months ago
• Laokoon-SecurITy / Cortex-XDR-Config-Extractor
  Cortex XDR Config Extractor
  ☆135Updated 2 years ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆146Updated last year
• Sq00ky / SMB-Session-Spoofing
  ☆122Updated 2 years ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆200Updated 4 months ago
• api0cradle / RedTeamScripts
  Just some random Red Team Scripts that can be useful
  ☆153Updated last year
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆157Updated 3 years ago
• jconwell / secret_handshake
  A prototype malware C2 channel using x509 certificates over mTLS
  ☆151Updated last year
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆133Updated 3 years ago
• smokeme / airstrike
  ☆169Updated last year
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆87Updated 2 years ago
• tothi / serviceDetector
  Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin pr…
  ☆239Updated 2 years ago
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆85Updated 3 years ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆227Updated 2 years ago