Alternatives and similar repositories for merlin-agent:

Users that are interested in merlin-agent are comparing it to the libraries listed below

• ariary / fileless-xec
  Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…
  ☆197Updated 9 months ago
• Binject / go-donut
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆332Updated 2 years ago
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆363Updated last year
• C-Sto / BananaPhone
  It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)
  ☆501Updated 2 years ago
• f1zm0 / acheron
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆324Updated last year
• C-Sto / gosecretsdump
  Dump ntds.dit really fast
  ☆391Updated 3 years ago
• sh4hin / GoPurple
  Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
  ☆484Updated 4 years ago
• BC-SECURITY / Malleable-C2-Profiles
  Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.
  ☆361Updated last year
• RedTeamPentesting / resocks
  mTLS-Encrypted Back-Connect SOCKS5 Proxy
  ☆436Updated last year
• capt-meelo / laZzzy
  laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
  ☆469Updated 2 years ago
• d4rckh / grc2
  grim reaper c2
  ☆335Updated 2 years ago
• sliverarmory / armory
  The Official Sliver Armory
  ☆100Updated this week
• N7WEra / BofAllTheThings
  Creating a repository with all public Beacon Object Files (BoFs)
  ☆470Updated last year
• ariary / QueenSono
  Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)
  ☆146Updated 3 years ago
• MythicAgents / thanatos
  Mythic C2 agent targeting Linux and Windows hosts written in Rust
  ☆332Updated 3 months ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆179Updated 2 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆744Updated last year
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆628Updated 2 years ago
• Tylous / SourcePoint
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,078Updated last year
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆413Updated 2 years ago
• Cobalt-Strike / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆207Updated 3 weeks ago
• mgeeky / ElusiveMice
  Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
  ☆446Updated last year
• praetorian-inc / PortBender
  TCP Port Redirection Utility
  ☆712Updated 2 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆301Updated last year
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆580Updated 9 months ago
• Cobalt-Strike / bof_template
  A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use int…
  ☆172Updated 3 weeks ago
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆709Updated 7 months ago
• iDigitalFlame / XMT
  eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features
  ☆96Updated 7 months ago
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆416Updated last year
• Octoberfest7 / MemFiles
  A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
  ☆452Updated 9 months ago