Alternatives and similar repositories for Havoc-C2-RCE-2024

Users that are interested in Havoc-C2-RCE-2024 are comparing it to the libraries listed below

• 123ojp / GREtunnel-scanner
  This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion
  ☆90Updated 4 months ago
• hackerhouse-opensource / telnetclientpoc
  Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit
  ☆62Updated 8 months ago
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆61Updated 5 months ago
• MWR-CyberSec / AD-CS-Forest-Exploiter
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆103Updated 2 years ago
• MaorSabag / impacket-jump
  Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…
  ☆113Updated last month
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated 3 months ago
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆76Updated last year
• CultCornholio / RedTeamTP
  ☆86Updated 7 months ago
• watchtowrlabs / watchTowr-vs-progress-moveit_CVE-2024-5806
  Exploit for the CVE-2024-5806
  ☆45Updated last year
• Shrfnt77 / SharpCoercer
  SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…
  ☆51Updated 5 months ago
• 0xthirteen / WMI_Proc_Dump
  Dump processes over WMI with MSFT_MTProcess
  ☆81Updated 3 months ago
• deriv-security / MeetC2
  (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.
  ☆129Updated 4 months ago
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• Kryp7os / SharpRBCD
  An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD
  ☆49Updated 10 months ago
• watchtowrlabs / CVE-2024-50623
  Cleo Unrestricted file upload and download PoC (CVE-2024-50623)
  ☆25Updated last year
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆54Updated last month
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆102Updated 2 years ago
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆89Updated 10 months ago
• absholi7ly / CVE-2025-0282-Ivanti-exploit
  CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…
  ☆51Updated 11 months ago
• strozfriedberg / EDRSilencer-BOF
  Port of the EDRSilencer tool (https://github.com/netero1010/EDRSilencer) to BOF format
  ☆31Updated last year
• lsecqt / SessionView
  A portable C# utility for enumerating local and remote windows sessions
  ☆41Updated last week
• almounah / GoDroplets
  Go Shellcode Loader to be Integrated in Exploration C2
  ☆27Updated 11 months ago
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆115Updated last year
• horizon3ai / CVE-2024-9465
  Proof of Concept Exploit for CVE-2024-9465
  ☆30Updated last year
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆32Updated last year
• almounah / orsted
  Orsted C2 Framework
  ☆103Updated this week
• rasta-mouse / SpawnWith
  ☆109Updated 10 months ago
• DevBuiHieu / CVE-2025-33053-Proof-Of-Concept
  CVE-2025-33053 Proof Of Concept (PoC)
  ☆63Updated 6 months ago
• cogiceo / DACLSearch
  Exhaustive search and flexible filtering of Active Directory ACEs.
  ☆69Updated last month
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆35Updated 2 years ago