Alternatives and similar repositories for MultiPotato:

Users that are interested in MultiPotato are comparing it to the libraries listed below

• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆413Updated last month
• boku7 / spawn
  Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
  ☆449Updated last year
• Inf0secRabbit / BadAssMacros
  BadAssMacros - C# based automated Malicous Macro Generator.
  ☆405Updated 3 years ago
• FuzzySecurity / StandIn
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆744Updated last year
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆578Updated 2 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆383Updated 2 years ago
• ly4k / Pachine
  Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)
  ☆271Updated 3 years ago
• anthemtotheego / InlineExecute-Assembly
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆642Updated last year
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆698Updated 5 months ago
• testanull / ProxyNotShell-PoC
  ☆406Updated 2 years ago
• boku7 / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆379Updated last year
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆614Updated 2 years ago
• 0xthirteen / StayKit
  Cobalt Strike kit for Persistence
  ☆470Updated 5 years ago
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆363Updated 3 years ago
• cube0x0 / SharpSystemTriggers
  Collection of remote authentication triggers in C#
  ☆474Updated 9 months ago
• klezVirus / CheeseTools
  Self-developed tools for Lateral Movement/Code Execution
  ☆702Updated 3 years ago
• nettitude / SharpWSUS
  ☆449Updated 2 years ago
• ShutdownRepo / ShadowCoerce
  MS-FSRVP coercion abuse PoC
  ☆284Updated 3 years ago
• 0xthirteen / MoveKit
  Cobalt Strike kit for Lateral Movement
  ☆660Updated 5 years ago
• Wh04m1001 / DFSCoerce
  ☆761Updated 2 years ago
• mdsecactivebreach / Farmer
  ☆363Updated 3 years ago
• zcgonvh / EfsPotato
  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
  ☆752Updated last year
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆447Updated 11 months ago
• Cobalt-Strike / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆200Updated 2 months ago
• GeorgePatsias / ScareCrow-CobaltStrike
  Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)
  ☆460Updated 2 years ago
• med0x2e / NTLMRelay2Self
  An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
  ☆399Updated last year
• cube0x0 / MiniDump
  C# Lsass parser
  ☆284Updated 3 years ago
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆410Updated 2 years ago
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆310Updated 2 years ago
• ajpc500 / BOFs
  Collection of Beacon Object Files
  ☆572Updated 2 years ago