Alternatives and similar repositories for Nimcrypt2

Users that are interested in Nimcrypt2 are comparing it to the libraries listed below

• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,318Updated 2 years ago
• chvancooten / NimPackt-v1
  Nim-based assembly packer and shellcode loader for opsec & profit
  ☆486Updated 2 years ago
• anthemtotheego / InlineExecute-Assembly
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆714Updated 2 years ago
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆764Updated last year
• mgeeky / RedWarden
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆988Updated 3 years ago
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆988Updated last year
• Inf0secRabbit / BadAssMacros
  BadAssMacros - C# based automated Malicous Macro Generator.
  ☆429Updated 3 years ago
• trustedsec / CS-Remote-OPs-BOF
  ☆1,068Updated last week
• boku7 / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,379Updated 2 years ago
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆708Updated 3 years ago
• BC-SECURITY / Malleable-C2-Profiles
  Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.
  ☆386Updated 2 years ago
• mgeeky / PackMyPayload
  A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…
  ☆1,043Updated last year
• praetorian-inc / PortBender
  TCP Port Redirection Utility
  ☆748Updated 2 years ago
• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,246Updated last year
• FuzzySecurity / StandIn
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆822Updated 2 years ago
• klezVirus / chameleon
  PowerShell Script Obfuscator
  ☆580Updated 2 years ago
• Tylous / SourcePoint
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,179Updated 7 months ago
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆430Updated 2 years ago
• pwn1sher / KillDefender
  A small POC to make defender useless by removing its token privileges and lowering the token integrity
  ☆689Updated 3 years ago
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆595Updated 3 years ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆587Updated 3 years ago
• antonioCoco / JuicyPotatoNG
  Another Windows Local Privilege Escalation from Service Account to System
  ☆925Updated 3 years ago
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,095Updated 2 years ago
• capt-meelo / laZzzy
  laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
  ☆497Updated 2 years ago
• ajpc500 / BOFs
  Collection of Beacon Object Files
  ☆618Updated 3 years ago
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆431Updated 3 years ago
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆426Updated last year
• MythicAgents / Apollo
  A .NET Framework 4.0 Windows Agent
  ☆515Updated this week
• S3cur3Th1sSh1t / MultiPotato
  ☆534Updated 4 years ago
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆662Updated 2 years ago