Alternatives and similar repositories for atomic-red-team

Users that are interested in atomic-red-team are comparing it to the libraries listed below

• 0xbadjuju / PowerProvider
  ☆41Updated 7 years ago
• 001SPARTaN / csfm
  Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.
  ☆65Updated 7 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆46Updated 8 years ago
• p3nt4 / PSUnlock
  ☆19Updated 8 years ago
• V1V1 / Sleight
  Empire HTTP(S) C2 redirector setup script
  ☆47Updated 7 years ago
• johnjohnsp1 / AllTheThings
  Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.
  ☆32Updated 9 years ago
• cornerpirate / rdpupload
  Python script which will type a file into an RDP session. For when drag and drop and disk mounting is not possible
  ☆32Updated last year
• vysecurity / EmpireAMSI
  ☆13Updated 4 years ago
• ChrisAD / ads-payload
  Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…
  ☆53Updated last year
• vletoux / ms17-010-Scanner
  ☆58Updated 8 years ago
• khr0x40sh / PowerW0rm
  ☆16Updated 10 years ago
• trustedsec / auto_SettingContent-ms
  This is a quick POC for using the Matt Nelson (enigma0x3) technique for generating a malicious .SettingContent-ms extension type for remo…
  ☆54Updated 7 years ago
• Arno0x / ObfuscateCactusTorch
  When CactusTorch meets WebDavDelivery and obfuscation
  ☆63Updated 7 years ago
• stufus / parse-mimikatz-log
  A relatively flexible tool to parse mimikatz output
  ☆35Updated 8 years ago
• curtbraz / Invoke-NeutralizeAV
  Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting
  ☆41Updated 6 years ago
• foxglovesec / RottenPotatoNG
  New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.
  ☆36Updated 7 years ago
• vysecurity / Office365TenantsList
  Office365 Tenants List
  ☆16Updated 7 years ago
• SadProcessor / EmpireDog
  A collection of PowerShell Modules for BloodHound/Empire Orchestration
  ☆108Updated 7 years ago
• DanMcInerney / msfbot
  WORK IN PROGRESS. Waits for MSF session then automatically gets domain admin
  ☆64Updated 2 years ago
• Powershell-Offense / Post-Exploitation
  \ PowerAvails Powershell /
  ☆12Updated 7 years ago
• tasox / LogRM
  LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network
  ☆74Updated 6 years ago
• ParsingTeam / ppsx-file-generator
  CVE-2017-8570 Exploit
  ☆21Updated 8 years ago
• killswitch-GUI / Persistence-Survivability
  Powershell Persistence Locator
  ☆66Updated 8 years ago
• SpiderLabs / Firework
  Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.
  ☆44Updated 5 years ago
• Arno0x / WebDavDelivery
  A WebDAV PROPFIND covert channel to deliver payloads
  ☆52Updated 7 years ago
• p292 / DDEAutoCS
  A cobaltstrike script that integrates DDEAuto Attacks
  ☆64Updated 7 years ago
• diljith369 / avbypassGo
  AV Bypass
  ☆29Updated 7 years ago
• jacob-baines / longtime-sunshine
  Nashorn Post Exploitation
  ☆32Updated 7 years ago
• tevora-threat / SecSmash
  ☆17Updated 7 years ago
• DamonMohammadbagher / NativePayload_ICMP
  C# code for Transferring Backdoor Payloads by ICMPv4 Traffic and bypassing Anti-Viruses
  ☆29Updated 2 years ago