Alternatives and similar repositories for Group3r:

Users that are interested in Group3r are comparing it to the libraries listed below

• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated last year
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated last year
• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆83Updated 2 years ago
• T4TCH3R / RedditC2
  Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…
  ☆25Updated 2 years ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆38Updated 8 months ago
• Mr-Un1k0d3r / BOFCode
  Bunch of BOF files
  ☆30Updated 3 months ago
• simondotsh / DirSync
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆28Updated last year
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆102Updated 3 years ago
• Synzack / Excel-4.0-Shellcode-Generator
  ☆13Updated 4 years ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• scriptchildie / gohellsgate
  Golang Implementation of Hell's gate
  ☆17Updated last year
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆84Updated 2 years ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆35Updated 10 months ago
• JonasBK / Powershell
  ☆34Updated last month
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆39Updated last year
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆79Updated 2 years ago
• jfmaes / DeepSleep
  all credits go to @mgeeky
  ☆64Updated 3 years ago
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆20Updated last year
• Cerbersec / pyMetaTwin
  Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform
  ☆16Updated 11 months ago
• Wh04m1001 / PICDumper
  ☆25Updated 3 years ago
• brett-fitz / pyMalleableProfileParser
  Parses Cobalt Strike malleable C2 profiles.
  ☆51Updated 2 weeks ago
• slygoo / pssrecon
  ☆19Updated 5 months ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago
• dxxzero / rusty_drivers
  BYOVD collection
  ☆23Updated last year
• 0xthirteen / PerfExec
  ☆77Updated last year
• xiosec / Terminator
  PowerShell script to terminate protected processes such as anti-malware and EDRs.
  ☆26Updated last year
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆61Updated last year
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆80Updated 3 years ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year