Alternatives and similar repositories for thanatos

Users that are interested in thanatos are comparing it to the libraries listed below

• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆335Updated last year
• capt-meelo / laZzzy
  laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
  ☆488Updated 2 years ago
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆654Updated 2 years ago
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆415Updated 2 years ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆382Updated last year
• N7WEra / BofAllTheThings
  Creating a repository with all public Beacon Object Files (BoFs)
  ☆512Updated last year
• REDMED-X / OperatorsKit
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆636Updated last week
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆673Updated 2 years ago
• Wra7h / FlavorTown
  Various ways to execute shellcode
  ☆498Updated last year
• Octoberfest7 / MemFiles
  A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
  ☆459Updated last year
• matro7sh / myph
  shellcode loader for your evasion needs
  ☆336Updated 3 months ago
• georgesotiriadis / Chimera
  Automated DLL Sideloading Tool With EDR Evasion Capabilities
  ☆486Updated last year
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• BC-SECURITY / Malleable-C2-Profiles
  Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.
  ☆379Updated 2 years ago
• anthemtotheego / InlineExecute-Assembly
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆692Updated 2 years ago
• ConsciousHacker / WFH
  ☆417Updated 3 years ago
• Bl4ckM1rror / FUD-UUID-Shellcode
  ☆330Updated 2 years ago
• janoglezcampos / DeathSleep
  A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementin…
  ☆529Updated 3 years ago
• tastypepperoni / PPLBlade
  Protected Process Dumper Tool
  ☆563Updated last year
• trickster0 / TartarusGate
  TartarusGate, Bypassing EDRs
  ☆606Updated 3 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆386Updated 3 years ago
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆592Updated 2 years ago
• Cracked5pider / KaynStrike
  UDRL for CS
  ☆430Updated last year
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆461Updated last year
• boku7 / Ninja_UUID_Runner
  Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!
  ☆447Updated 2 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆189Updated 3 years ago
• Nariod / RustPacker
  Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.
  ☆295Updated 2 months ago
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆742Updated 11 months ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆257Updated 3 years ago
• NUL0x4C / HellShell
  transform your payload into ipv4/ipv6/mac arrays
  ☆189Updated 3 years ago