Alternatives and similar repositories for RedCaddy:

Users that are interested in RedCaddy are comparing it to the libraries listed below

• crisprss / RasmanPotato
  Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do
  ☆370Updated 2 years ago
• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆147Updated 9 months ago
• baiyies / ScreenshotBOFPlus
  Take a screenshot without injection for Cobalt Strike
  ☆183Updated last year
• CBLabresearch / Clematis
  PE to shellcode
  ☆186Updated 3 months ago
• zcgonvh / DCOMPotato
  Some Service DCOM Object and SeImpersonatePrivilege abuse.
  ☆354Updated 2 years ago
• yzddmr6 / SharpAlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks Rewrite In C#
  ☆89Updated last year
• Hagrid29 / DuplicateDump
  Dumping LSASS with a duplicated handle from custom LSA plugin
  ☆200Updated 3 years ago
• XiaoliChan / wmiexec-RegOut
  Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-softw…
  ☆279Updated 2 years ago
• hackvens / CoercedPotato
  ☆228Updated 4 months ago
• balki97 / OWASSRF-CVE-2022-41082-POC
  PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers
  ☆91Updated 2 years ago
• Ridter / atexec-pro
  Fileless atexec, no more need for port 445
  ☆363Updated last year
• M01N-Team / HeaderLessPE
  ☆237Updated last year
• 0xEr3bus / RdpStrike
  Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
  ☆239Updated 9 months ago
• CrossC2 / CrossC2Kit
  CrossC2 developed based on the Cobalt Strike framework can be used for other cross-platform system control. CrossC2Kit provides some inte…
  ☆217Updated last year
• b1tg / cobaltstrike-beacon-rust
  CobaltStrike beacon in rust
  ☆185Updated 7 months ago
• 4ra1n / java-gate
  Java JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders
  ☆195Updated last year
• 0x00Check / Amaterasu
  Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…
  ☆71Updated last year
• Octoberfest7 / CVE-2023-36874_BOF
  Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
  ☆204Updated last year
• ScriptIdiot / BOF-patchit
  An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…
  ☆129Updated 2 years ago
• colind0pe / AV-Bypass-Learning
  免杀学习笔记
  ☆221Updated last year
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆136Updated 3 years ago
• timwhitez / Doge-Gabh
  GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…
  ☆313Updated 6 months ago
• decoder-it / ADCSCoercePotato
  ☆223Updated 10 months ago
• TianNaYa / ProxyDll
  beta
  ☆115Updated 6 months ago
• Adaptix-Framework / Extension-Kit
  AdaptixFramework Extension Kit
  ☆31Updated this week
• secur30nly / go-self-delete
  Go implementation of the self-deletion of an running executable from disk
  ☆107Updated last year
• Amzza0x00 / go-impacket
  基于golang实现的impacket
  ☆243Updated last year
• Like0x / 0xagent
  CobaltStrike 4.0 - 4.5 Patch
  ☆174Updated 2 years ago
• baiyies / PowerOneLiner
  Powershell shellcode one-liner. Powershell免杀一句话上线器便捷生成
  ☆53Updated last year
• Nero22k / cve-2023-36802
  Exploit for CVE-2023-36802 targeting MSKSSRV.SYS driver
  ☆112Updated last year