Alternatives and similar repositories for merlin-cli

Users that are interested in merlin-cli are comparing it to the libraries listed below

• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆99Updated 2 years ago
• c3r3br4t3 / ShadowRDP
  ☆73Updated last year
• brett-fitz / pyMalleableProfileParser
  Parses Cobalt Strike malleable C2 profiles.
  ☆58Updated this week
• weaselsec / GodPotato-Aggressor-Script
  ☆89Updated last year
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆38Updated 4 years ago
• cybersectroll / SharpPersistSD
  ☆90Updated last year
• SySS-Research / MAT
  This tool, programmed in C#, allows for the fast discovery and exploitation of vulnerabilities in MSSQL servers
  ☆54Updated last year
• y00ga-sec / Forensike
  Remotely dump NT hashes through Windows Crash dumps
  ☆35Updated 9 months ago
• MaorSabag / interactive-execute-shellcode
  A simple PoC of injection shellcode into a remote process and get the output using namepipe
  ☆43Updated last year
• vysecurity / msmailprobe2
  Office 365 and Exchange Enumeration Version 2
  ☆18Updated last year
• Wh04m1001 / CVE-2023-36723
  ☆67Updated last year
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆85Updated 2 years ago
• 0xbad53c / OffSecOps-Arsenal
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆26Updated 11 months ago
• watchtowrlabs / CVE-2025-0282
  Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)
  ☆29Updated 6 months ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆22Updated 2 years ago
• realstatus / CVE-2024-40711-Exp
  CVE-2024-40711-exp
  ☆42Updated 9 months ago
• ProcessusT / HavocHub
  PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are rela…
  ☆37Updated last month
• almounah / GoDroplets
  Go Shellcode Loader to be Integrated in Exploration C2
  ☆27Updated 6 months ago
• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆57Updated 2 years ago
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆88Updated 2 years ago
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆114Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆117Updated last year
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆40Updated last year
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆49Updated 6 months ago
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated last year
• dru1d-foofus / GetLAPSPassword
  A LAPS dumper written using the impacket library.
  ☆31Updated 2 years ago
• PhrozenIO / SharpFtpC2
  A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.
  ☆89Updated last year
• Quack2332 / Simple-C-Implant
  ☆12Updated last year
• wolfcod / beacondbg
  Beacon Debugger
  ☆40Updated 9 months ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆55Updated 2 years ago