Alternatives and similar repositories for APT29-Adversary-Simulation

Users that are interested in APT29-Adversary-Simulation are comparing it to the libraries listed below

• S3N4T0R-0X0 / APT28-Adversary-Simulation

  View on GitHub
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆38Jun 12, 2024Updated last year
• HackLike-co / Cloak

  View on GitHub
  Generate Secure, Polymorphic, Evasive (lol) Payloads
  ☆29Oct 2, 2025Updated 4 months ago
• ghostbyt3 / patch-tuesday

  View on GitHub
  Python script that fetches, analyzes, and reports Microsoft Patch Tuesday updates via the MSRC API — with a clean web interface for easy …
  ☆23Updated this week
• us-cyber-team / nim_for_hackers2

  View on GitHub
  slides for talk given during uscg 2023 combine
  ☆38Sep 6, 2023Updated 2 years ago
• soufianetahiri / TeamsNTLMLeak

  View on GitHub
  Leak NTLM via Website tab in teams via MS Office
  ☆78Mar 28, 2024Updated last year
• som3canadian / Mythic_NimSyscallPacker_Wrapper

  View on GitHub
  Mythic C2 wrapper for NimSyscallPacker
  ☆25Mar 12, 2025Updated 11 months ago
• KingOfTheNOPs / EnableWebDAVClient-BOF

  View on GitHub
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆23Sep 15, 2023Updated 2 years ago
• OtterHacker / Hooker

  View on GitHub
  ☆109Oct 29, 2024Updated last year
• HackerHermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE

  View on GitHub
  C2 Infrastructure Automation
  ☆118Jun 21, 2025Updated 7 months ago
• mgeeky / digitalocean-app-redirector

  View on GitHub
  Reverse-HTTP Redirector via DigitalOcean Apps Platform
  ☆31Aug 16, 2023Updated 2 years ago
• nickvourd / SkyFall-Pack

  View on GitHub
  Your Skyfall Infrastructure Pack
  ☆89Jan 25, 2026Updated 3 weeks ago
• joe-desimone / rep-research

  View on GitHub
  ☆79Aug 5, 2024Updated last year
• 0xJs / AzurePowerCommands

  View on GitHub
  Extra cmdlets to help with quering security related information from Azure
  ☆14Sep 16, 2024Updated last year
• Cipher7 / havoc-SauronEye

  View on GitHub
  ☆11Dec 8, 2023Updated 2 years ago
• gemini-security / GithubC2

  View on GitHub
  ☆27Nov 7, 2023Updated 2 years ago
• BushidoUK / MITRE-Mappings

  View on GitHub
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆27Mar 20, 2025Updated 10 months ago
• JCSteiner / Emperor-Public

  View on GitHub
  Payload Generation Workflow
  ☆40Jul 18, 2025Updated 6 months ago
• egycondor / Blue-DVWA-Splunk

  View on GitHub
  ☆12Jun 4, 2025Updated 8 months ago
• ibaiC / FriendlyFireBOF

  View on GitHub
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆57Apr 14, 2025Updated 10 months ago
• LazyTitan33 / DomainPasswordSpray

  View on GitHub
  DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…
  ☆13Jul 16, 2025Updated 6 months ago
• Teach2Breach / stargate

  View on GitHub
  Locate dlls and function addresses without PEB Walk and EAT parsing
  ☆104Nov 7, 2025Updated 3 months ago
• Dor00tkit / BamExtensionTableHook

  View on GitHub
  Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…
  ☆92Jul 7, 2025Updated 7 months ago
• rbmm / Hollowed-Process

  View on GitHub
  ☆30Aug 24, 2025Updated 5 months ago
• grayhatkiller / wambam-bof

  View on GitHub
  ☆47Dec 5, 2025Updated 2 months ago
• 0xG00S3 / Hashbreaker

  View on GitHub
  A modern, web-based GUI for Hashcat that provides an intuitive interface for hash cracking operations, featuring real-time monitoring, pe…
  ☆33Mar 5, 2025Updated 11 months ago
• OffenseTeacher / NimSkrull

  View on GitHub
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆13May 20, 2023Updated 2 years ago
• MythicMeta / ExampleContainers

  View on GitHub
  Examples of various container types for Python and Golang
  ☆16Aug 29, 2025Updated 5 months ago
• 0x20c / CVE-2024-23692-EXP

  View on GitHub
  CVE-2024-23692 Exploit
  ☆13Jun 18, 2024Updated last year
• Hubbl3 / ThreatCheck

  View on GitHub
  Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
  ☆11May 17, 2024Updated last year
• p4p1 / havoc-reporter

  View on GitHub
  A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.
  ☆14Oct 31, 2023Updated 2 years ago
• m3rcer / IRvana

  View on GitHub
  Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution
  ☆130Dec 24, 2025Updated last month
• m7rick / Havoc-DLLHijack

  View on GitHub
  A tool to assist DLL hijacking via the Havoc GUI
  ☆12Jan 9, 2024Updated 2 years ago
• whokilleddb / SOAPHound

  View on GitHub
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33May 30, 2024Updated last year
• xelemental / Mal-LNK-Generator

  View on GitHub
  ☆39Mar 28, 2025Updated 10 months ago
• xpn / mythic_mcp

  View on GitHub
  A simple POC to expose Mythic as a MCP server
  ☆73Mar 20, 2025Updated 10 months ago
• nickvourd / Rocabella

  View on GitHub
  Sniffing files generator
  ☆61Feb 24, 2025Updated 11 months ago
• rasta-mouse / CsWhispers

  View on GitHub
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆186Mar 4, 2024Updated last year
• gladstomych / AHHHZURE

  View on GitHub
  AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…
  ☆104Apr 22, 2024Updated last year
• RWXstoned / GimmeShelter

  View on GitHub
  Situational Awareness script to identify how and where to run implants
  ☆67Dec 6, 2024Updated last year