Alternatives and similar repositories for Covert-C2

Users that are interested in Covert-C2 are comparing it to the libraries listed below

• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆60Updated 2 years ago
• brett-fitz / pyMalleableProfileParser
  Parses Cobalt Strike malleable C2 profiles.
  ☆58Updated this week
• nopbrick / SeeProxy
  Golang reverse proxy with CobaltStrike malleable profile validation.
  ☆110Updated 2 years ago
• Cobalt-Strike / icmp-udc2
  UDC2 implementation that provides an ICMP C2 channel
  ☆95Updated 3 weeks ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated 2 months ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆22Updated 2 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆86Updated 2 years ago
• kyxiaxiang / DetectCobaltStrike
  Detect Beacon Powerful (Include CobatStrike 4.10 Aha~)
  ☆21Updated last year
• ro0tmylove / CVE-2024-35250-BOF
  Cobalt Strike 的 CVE-2024-35250 的 BOF。(请给我加个星，谢谢。)
  ☆15Updated last year
• realstatus / CVE-2024-40711-Exp
  CVE-2024-40711-exp
  ☆42Updated last year
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆38Updated 5 years ago
• mez-0 / offensive-groovy
  Groovy Post Exploitation
  ☆19Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆101Updated 2 years ago
• vysecurity / msmailprobe2
  Office 365 and Exchange Enumeration Version 2
  ☆18Updated last year
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆54Updated 2 weeks ago
• Shrfnt77 / SharpCoercer
  SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…
  ☆51Updated 5 months ago
• Kryp7os / SharpRBCD
  An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD
  ☆49Updated 9 months ago
• cogiceo / DACLSearch
  Exhaustive search and flexible filtering of Active Directory ACEs.
  ☆66Updated last month
• EricEsquivel / OpsLoader
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆44Updated last year
• PhrozenIO / SharpFtpC2
  A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.
  ☆87Updated 2 years ago
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated last year
• c3r3br4t3 / ShadowRDP
  ☆73Updated last year
• dis0rder0x00 / ParentProcessManipulation-LNK
  Using LNK files and user input simulation to start processes under explorer.exe
  ☆30Updated last year
• ustayready / roguerdp
  ☆33Updated 3 years ago
• CodeXTF2 / evasion-adventures-files
  Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"
  ☆31Updated 2 years ago
• MaorSabag / interactive-execute-shellcode
  A simple PoC of injection shellcode into a remote process and get the output using namepipe
  ☆44Updated last year
• D00Movenok / goMalleable
  🔎🪲 Malleable C2 profiles parser and assembler written in golang
  ☆65Updated last year
• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆49Updated 2 years ago
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆38Updated 3 years ago
• Tw1sm / aesKrbKeyGen
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆81Updated 3 years ago