Alternatives and similar repositories for APT29-Adversary-Simulation

Users that are interested in APT29-Adversary-Simulation are comparing it to the libraries listed below

• 0xHossam / APT-Attack-Simulation
  APT-Attack-Simulation simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persistence and privile…
  ☆62Updated last year
• p4p1 / havoc-bloodhound
  A GUI wrapper inside of Havoc to interact with bloodhound CE
  ☆71Updated last year
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆43Updated last year
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆56Updated last year
• jeanlucdupont / EXEfromCER
  PoC that downloads an executable from a public SSL certificate
  ☆131Updated 3 months ago
• 4ndr34z / ntlmthief
  ☆52Updated last year
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆179Updated 6 months ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆43Updated last year
• CultCornholio / RedTeamTP
  ☆86Updated 6 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆83Updated last year
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆92Updated last year
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆36Updated last year
• nyxgeek / imgdevil
  quick and dirty proof-of-concept to hide shells in images
  ☆52Updated last year
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆41Updated 10 months ago
• SaadAhla / IP-Hunter
  Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process
  ☆71Updated last year
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆79Updated 2 years ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆64Updated last year
• mttaggart / rustyneedle
  A Rust-based dropper for shellcode payloads.
  ☆68Updated 8 months ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated last year
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• t3hbb / PanGP_Extractor
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆88Updated 10 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆98Updated 6 months ago
• t3l3machus / ACEshark
  ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…
  ☆119Updated 10 months ago
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆40Updated 2 years ago
• sensepost / mail-in-the-middle
  ☆109Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated 11 months ago
• 0xBienCuit / InfraRed-AWS
  ☆62Updated last year
• eric-conrad / c2-talk
  ☆37Updated last year