Alternatives and similar repositories for superman

Users that are interested in superman are comparing it to the libraries listed below

• optiv / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆718Updated last year
• b1nhack / rust-shellcode
  windows-rs shellcode loaders
  ☆356Updated 10 months ago
• colind0pe / AV-Bypass-Learning
  免杀学习笔记
  ☆222Updated last year
• kyxiaxiang / Beacon_Source
  not a reverse-engineered version of the Cobalt Strike Beacon
  ☆363Updated last year
• ReversingID / Shellcode-Loader
  Open repository for learning dynamic shellcode loading (sample in many programming languages)
  ☆248Updated 4 months ago
• XiaoliChan / wmiexec-Pro
  New generation of wmiexec.py
  ☆1,092Updated last week
• BeichenDream / PrintNotifyPotato
  PrintNotifyPotato
  ☆523Updated 2 years ago
• BeichenDream / SharpToken
  Windows Token Stealing Expert
  ☆473Updated last year
• MaorSabag / TrueSightKiller
  CPP AV/EDR Killer
  ☆414Updated last year
• CodeXTF2 / ScreenshotBOF
  An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…
  ☆427Updated last month
• Adaptix-Framework / AdaptixC2
  ☆1,003Updated this week
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆438Updated 2 years ago
• wgpsec / CreateHiddenAccount
  A tool for creating hidden accounts using the registry || 一个使用注册表创建隐藏帐户的工具
  ☆472Updated 3 years ago
• chainreactors / malice-network
  Next Generation C2 Framework
  ☆301Updated this week
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆370Updated last year
• WKL-Sec / HiddenDesktop
  HVNC for Cobalt Strike
  ☆1,226Updated last year
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD) ( Microsoft Won)
  ☆945Updated last year
• lypd0 / DeadPotato
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆417Updated 9 months ago
• EvilBytecode / EDR-XDR-AV-Killer
  Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
  ☆274Updated last month
• wikiZ / RedGuard
  RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
  ☆1,478Updated 9 months ago
• FDlucifer / Proxy-Attackchain
  Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)
  ☆531Updated last year
• Meowmycks / LetMeowIn
  A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
  ☆409Updated 10 months ago
• postrequest / link
  link is a command and control framework written in rust
  ☆577Updated 3 years ago
• pumpbin / pumpbin
  🎃 PumpBin is an Implant Generation Platform.
  ☆315Updated 10 months ago
• CBLabresearch / Clematis
  PE to shellcode
  ☆210Updated 5 months ago
• wh0amitz / KRBUACBypass
  UAC Bypass By Abusing Kerberos Tickets
  ☆496Updated last year
• hakaioffsec / CVE-2024-21338
  Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
  ☆293Updated last year
• D3Ext / Hooka
  Shellcode loader generator with multiples features
  ☆480Updated 5 months ago
• knight0x07 / ImpulsiveDLLHijack
  C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…
  ☆523Updated 3 years ago
• varwara / CVE-2024-26229
  CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
  ☆344Updated 11 months ago