Alternatives and similar repositories for superman

Users that are interested in superman are comparing it to the libraries listed below

• b1nhack / rust-shellcode
  windows-rs shellcode loaders
  ☆359Updated last year
• pumpbin / pumpbin
  🎃 PumpBin is an Implant Generation Platform.
  ☆322Updated last year
• colind0pe / AV-Bypass-Learning
  免杀学习笔记
  ☆223Updated 2 years ago
• kyxiaxiang / Beacon_Source
  not a reverse-engineered version of the Cobalt Strike Beacon
  ☆374Updated last year
• chainreactors / malice-network
  Next Generation C2 Framework
  ☆334Updated this week
• optiv / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆719Updated last year
• BeichenDream / SharpToken
  Windows Token Stealing Expert
  ☆473Updated last year
• BeichenDream / PrintNotifyPotato
  PrintNotifyPotato
  ☆524Updated 2 years ago
• wgpsec / CreateHiddenAccount
  A tool for creating hidden accounts using the registry || 一个使用注册表创建隐藏帐户的工具
  ☆475Updated 3 years ago
• CodeXTF2 / ScreenshotBOF
  An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…
  ☆437Updated 2 months ago
• Prepouce / CoercedPotato
  A Windows potato to privesc
  ☆373Updated 10 months ago
• CrossC2 / CrossC2Kit
  CrossC2 developed based on the Cobalt Strike framework can be used for other cross-platform system control. CrossC2Kit provides some inte…
  ☆222Updated last year
• ReversingID / Shellcode-Loader
  Open repository for learning dynamic shellcode loading (sample in many programming languages)
  ☆251Updated 2 weeks ago
• chainreactors / malefic
  IoM implant, C2 Framework and Infrastructure
  ☆193Updated this week
• crisprss / RasmanPotato
  Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do
  ☆372Updated 2 years ago
• postrequest / link
  link is a command and control framework written in rust
  ☆577Updated 3 years ago
• MaorSabag / TrueSightKiller
  CPP AV/EDR Killer
  ☆425Updated last year
• XiaoliChan / wmiexec-Pro
  New generation of wmiexec.py
  ☆1,112Updated last month
• fdx-xdf / darkPulse
  darkPulse是一个用go编写的shellcode Packer，用于生成各种各样的shellcode loader，免杀火绒，360核晶等国内常见杀软。
  ☆850Updated 9 months ago
• CBLabresearch / Clematis
  PE to shellcode
  ☆223Updated 6 months ago
• hakaioffsec / CVE-2024-21338
  Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
  ☆295Updated last year
• Z3ratu1 / geacon_plus
  CobaltStrike beacon written in golang
  ☆436Updated last year
• Teach2Breach / Tempest
  A command and control framework written in rust.
  ☆356Updated 4 months ago
• varwara / CVE-2024-35250
  PoC for the Untrusted Pointer Dereference in the ks.sys driver
  ☆281Updated 7 months ago
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆441Updated 2 years ago
• EvilBytecode / EDR-XDR-AV-Killer
  Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
  ☆276Updated 2 months ago
• mverschu / CVE-2025-33073
  PoC Exploit for the NTLM reflection SMB flaw.
  ☆437Updated last month
• XiaoliChan / RedCaddy
  C2 redirector base on caddy
  ☆204Updated last year
• timwhitez / Doge-Gabh
  GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…
  ☆321Updated 10 months ago
• D3Ext / Hooka
  Shellcode loader generator with multiples features
  ☆489Updated 6 months ago