Alternatives and similar repositories for APT29-Adversary-Simulation

Users that are interested in APT29-Adversary-Simulation are comparing it to the libraries listed below

• 0xHossam / APT-Attack-Simulation
  APT-Attack-Simulation simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persistence and privile…
  ☆62Updated last year
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆36Updated last year
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆56Updated last year
• ASP4RUX / bypassEDR-AV
  ☆59Updated 11 months ago
• 0xBienCuit / InfraRed-AWS
  ☆61Updated last year
• keywa7 / keywa7
  The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.
  ☆61Updated last year
• CyberSecurityUP / Awesome-EDR-Evasion
  ☆95Updated 8 months ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆42Updated last year
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆186Updated last year
• CyberSecurityUP / Windows-API-for-Red-Team
  ☆85Updated last year
• smokeme / PDFator
  ☆27Updated 2 years ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆43Updated last year
• jeanlucdupont / EXEfromCER
  PoC that downloads an executable from a public SSL certificate
  ☆130Updated 3 months ago
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆78Updated 2 years ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated 10 months ago
• p4p1 / havoc-bloodhound
  A GUI wrapper inside of Havoc to interact with bloodhound CE
  ☆71Updated last year
• 4ndr34z / ntlmthief
  ☆52Updated last year
• t3l3machus / ACEshark
  ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…
  ☆117Updated 9 months ago
• chebuya / exploits
  Repo for all my exploits/PoCs
  ☆53Updated 5 months ago
• nyxgeek / imgdevil
  quick and dirty proof-of-concept to hide shells in images
  ☆51Updated last year
• gatariee / Winton
  Command and Control (C2) framework
  ☆132Updated 5 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated last year
• S3N4T0R-0X0 / Checkmate
  payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter
  ☆107Updated last year
• h0ru / AMSI-Reaper
  ☆105Updated last year
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆64Updated last year
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆166Updated last year
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆87Updated 7 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆82Updated last year