Alternatives and similar repositories for dvenom

Users that are interested in dvenom are comparing it to the libraries listed below

• mertdas / RedPersist
  ☆222Updated last year
• Workingdaturah / Payload-Generator
  An aggressor script that can help automate payload building in Cobalt Strike
  ☆118Updated 2 years ago
• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆160Updated last year
• N1k0la-T / CVE-2023-36745
  ☆168Updated 2 years ago
• 0xEr3bus / RdpStrike
  Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
  ☆249Updated last year
• fin3ss3g0d / ASPJinjaObfuscator
  Heavily obfuscated ASP web shell generation tool.
  ☆175Updated last year
• sokaRepo / CoercedPotatoRDLL
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆224Updated 2 years ago
• maxDcb / C2TeamServer
  TeamServer and Client of Exploration Command and Control Framework
  ☆176Updated 3 weeks ago
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆226Updated last year
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆214Updated 2 years ago
• j3h4ck / WatchDogKiller
  PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.
  ☆180Updated 4 months ago
• kleiton0x00 / RemoteShellcodeExec
  Execute shellcode from a remote-hosted bin file using Winhttp.
  ☆241Updated 2 years ago
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆145Updated 2 years ago
• CodeXTF2 / WindowSpy
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆281Updated 11 months ago
• Aur3ns / LsassStealer
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆121Updated 7 months ago
• weaselsec / GodPotato-Aggressor-Script
  ☆89Updated 2 years ago
• WKL-Sec / WMIExec
  Set of python scripts which perform different ways of command execution via WMI protocol.
  ☆165Updated 2 years ago
• ice-wzl / wmiexec2
  wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures …
  ☆52Updated 4 months ago
• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆53Updated last year
• nickvourd / CS-Aggressor-Kit
  Homemade Aggressor scripts kit for Cobalt Strike
  ☆90Updated 2 months ago
• SaadAhla / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆145Updated 2 years ago
• Darkrain2009 / RedExt
  Chrome browser extension-based Command & Control
  ☆229Updated 6 months ago
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆104Updated 10 months ago
• hackvens / CoercedPotato
  ☆232Updated last year
• g0h4n / REC2
  REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs…
  ☆163Updated last year
• trevorsaudi / Mshikaki
  A shellcode injection tool showcasing various process injection techniques
  ☆136Updated 2 years ago
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆352Updated 2 years ago
• decoder-it / TokenStealer
  ☆163Updated 2 years ago
• decoder-it / ADCSCoercePotato
  ☆241Updated last year
• Octoberfest7 / CVE-2023-36874_BOF
  Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
  ☆205Updated 2 years ago