Alternatives and similar repositories for MAT

Users that are interested in MAT are comparing it to the libraries listed below

• weaselsec / GodPotato-Aggressor-Script
  ☆89Updated last year
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆114Updated 2 years ago
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆101Updated 2 years ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆118Updated last year
• PhrozenIO / SharpFtpC2
  A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.
  ☆86Updated 2 years ago
• isclayton / viewstalker
  A tool for identifying and exploiting vulnerable Viewstate implementations in ASP.NET
  ☆54Updated 3 years ago
• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆53Updated last year
• realstatus / CVE-2024-40711-Exp
  CVE-2024-40711-exp
  ☆42Updated last year
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆38Updated 5 years ago
• Leo4j / SessionExec
  Execute commands in other Sessions
  ☆90Updated last year
• brett-fitz / pyMalleableProfileParser
  Parses Cobalt Strike malleable C2 profiles.
  ☆58Updated last week
• TunnelGRE / XOR_NIM_Inject
  Simple shellcode injection in Nim encrypted in XOR
  ☆22Updated 2 years ago
• dmcxblue / SharpGhostTask
  A C# port from Invoke-GhostTask
  ☆118Updated last year
• MzHmO / psexec_noinstall
  Repository contains psexec, which will help to exploit the forgotten pipe
  ☆171Updated last year
• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆59Updated 2 years ago
• Sq00ky / RunAsPasswd
  A RunAs clone with the ability to specify the password as an argument.
  ☆112Updated 2 years ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆92Updated 2 years ago
• CodeXTF2 / cobaltstrike-headless
  Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
  ☆148Updated 3 years ago
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆83Updated 2 years ago
• jiansiting / CVE-2025-59287
  WSUS Unauthenticated RCE
  ☆152Updated 3 weeks ago
• 0xbad53c / webshells
  My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the interne…
  ☆21Updated last year
• sfewer-r7 / CVE-2023-34362
  CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
  ☆63Updated last year
• praetorian-inc / ADFSRelay
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆186Updated 3 years ago
• kh4sh3i / ProxyShell
  CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability
  ☆42Updated 3 years ago
• Wh04m1001 / DiagTrackEoP
  ☆88Updated 3 years ago
• sliverarmory / hashdump
  Dump Windows SAM hashes
  ☆42Updated 2 years ago
• two06 / CerealKiller
  .NET deserialization hunter
  ☆80Updated last year
• quahac / Azure-AD-Password-Checker
  Azure AD Password Checker
  ☆85Updated 10 months ago
• nopbrick / SeeProxy
  Golang reverse proxy with CobaltStrike malleable profile validation.
  ☆110Updated 2 years ago
• n00py / DCSync
  DCSync Attack from Outside using Impacket
  ☆115Updated 3 years ago