Alternatives and similar repositories for Hephaestus

Users that are interested in Hephaestus are comparing it to the libraries listed below

• glinares / OfficeMalware

  View on GitHub
  ☆113Jun 12, 2017Updated 8 years ago
• vletoux / NTLMInjector

  View on GitHub
  In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)
  ☆169Jun 8, 2017Updated 8 years ago
• xillwillx / tricky.lnk

  View on GitHub
  Creates a .lnk file with unicode chars that reverse the file extension and adds a .txt to the end to make it appear as a textfile. Paylo…
  ☆114Dec 19, 2020Updated 5 years ago
• bnagy / babysit

  View on GitHub
  Run a windows process with many inputs and catch exit codes
  ☆14Jan 5, 2016Updated 10 years ago
• p3nt4 / PSUnlock

  View on GitHub
  ☆19May 31, 2017Updated 8 years ago
• Mr-Un1k0d3r / SCT-obfuscator

  View on GitHub
  Cobalt Strike SCT payload obfuscator
  ☆143Jul 7, 2017Updated 8 years ago
• danielbohannon / Out-FINcodedCommand

  View on GitHub
  POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…
  ☆105Jul 2, 2017Updated 8 years ago
• xorrior / RemoteRecon

  View on GitHub
  Remote Recon and Collection
  ☆459Nov 23, 2017Updated 8 years ago
• killswitch-GUI / Persistence-Survivability

  View on GitHub
  Powershell Persistence Locator
  ☆66Sep 11, 2016Updated 9 years ago
• GoFetchAD / GoFetch

  View on GitHub
  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.
  ☆634Jun 20, 2017Updated 8 years ago
• Mr-Un1k0d3r / MaliciousMacroGenerator

  View on GitHub
  Malicious Macro Generator
  ☆831Apr 17, 2019Updated 6 years ago
• FSecureLABS / wePWNise

  View on GitHub
  WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application cont…
  ☆353Aug 27, 2018Updated 7 years ago
• vysecurity / morphHTA

  View on GitHub
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆526Apr 14, 2023Updated 2 years ago
• RedSiege / WMImplant

  View on GitHub
  This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …
  ☆840Jun 25, 2024Updated last year
• infosecn1nja / e2modrewrite

  View on GitHub
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆29Sep 17, 2019Updated 6 years ago
• mrschyte / pentestkoala

  View on GitHub
  Modified dropbear server which acts as a client and allows authless login
  ☆126Aug 27, 2018Updated 7 years ago
• klsecservices / Invoke-Vnc

  View on GitHub
  Powershell VNC injector
  ☆341Jun 29, 2020Updated 5 years ago
• malcomvetter / DieHard

  View on GitHub
  PoC: process watcher patterns to make killing a process hard.
  ☆11Aug 1, 2018Updated 7 years ago
• vysecurity / genHTA

  View on GitHub
  Generates anti-sandbox analysis HTA files without payloads
  ☆120Mar 16, 2017Updated 8 years ago
• Cn33liz / StarFighters

  View on GitHub
  A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
  ☆322Jun 5, 2017Updated 8 years ago
• FuzzySecurity / HackSysTeam-PSKernelPwn

  View on GitHub
  ☆142Apr 21, 2017Updated 8 years ago
• Genetic-Malware / Ebowla

  View on GitHub
  Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)
  ☆763Jan 28, 2019Updated 7 years ago
• nettitude / PoshC2_Old

  View on GitHub
  Powershell C2 Server and Implants
  ☆574Nov 11, 2019Updated 6 years ago
• Cn33liz / MacroMeter

  View on GitHub
  VBA Reversed TCP Meterpreter Stager
  ☆65Apr 23, 2018Updated 7 years ago
• sensepost / autoDANE

  View on GitHub
  Auto Domain Admin and Network Exploitation.
  ☆299Dec 21, 2017Updated 8 years ago
• mdsecactivebreach / CACTUSTORCH

  View on GitHub
  CACTUSTORCH: Payload Generation for Adversary Simulations
  ☆1,013Jul 3, 2018Updated 7 years ago
• Arno0x / DNSDelivery

  View on GitHub
  DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.
  ☆145Oct 6, 2019Updated 6 years ago
• 0xbadjuju / WheresMyImplant

  View on GitHub
  A Bring Your Own Land Toolkit that Doubles as a WMI Provider
  ☆289Oct 31, 2018Updated 7 years ago
• TmmmmmR / scapy-toolkit

  View on GitHub
  Some code snapshot that can be used to craft your own tool/exploit
  ☆12May 28, 2015Updated 10 years ago
• 0xdeadbeefJERKY / Office-DDE-Payloads

  View on GitHub
  Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.
  ☆638Jul 16, 2023Updated 2 years ago
• ALBY-Project / ALBY

  View on GitHub
  ☆22Mar 5, 2018Updated 7 years ago
• 001SPARTaN / aggressor_scripts

  View on GitHub
  A collection of useful scripts for Cobalt Strike
  ☆172Aug 15, 2024Updated last year
• anthemtotheego / SharpNado

  View on GitHub
  ☆69Dec 19, 2018Updated 7 years ago
• Arno0x / ObfuscateCactusTorch

  View on GitHub
  When CactusTorch meets WebDavDelivery and obfuscation
  ☆63Sep 19, 2017Updated 8 years ago
• hegusung / AVSignSeek

  View on GitHub
  Tool written in python3 to determine where the AV signature is located in a binary/payload
  ☆315Mar 24, 2018Updated 7 years ago
• cobbr / ObfuscatedEmpire

  View on GitHub
  ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.
  ☆231Nov 17, 2017Updated 8 years ago
• curi0usJack / luckystrike

  View on GitHub
  A PowerShell based utility for the creation of malicious Office macro documents.
  ☆1,111Nov 3, 2017Updated 8 years ago
• joesecurity / pafishmacro

  View on GitHub
  Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …
  ☆292Jun 27, 2017Updated 8 years ago
• screetsec / Microsploit

  View on GitHub
  Fast and easy create backdoor office exploitation using module metasploit packet , Microsoft Office , Open Office , Macro attack , Buffer…
  ☆442Jul 11, 2017Updated 8 years ago