Alternatives and similar repositories for curlshell

Users that are interested in curlshell are comparing it to the libraries listed below

• kraken-ng / Kraken
  Kraken, a modular multi-language webshell coded by @secu_x11
  ☆550Updated last year
• peass-ng / CloudPEASS
  ☆594Updated this week
• blacklanternsecurity / badsecrets
  A library for detecting known secrets across many web frameworks
  ☆753Updated this week
• D00Movenok / BounceBack
  ↕️🤫 Stealth redirector for your red team operation security
  ☆1,042Updated 5 months ago
• hoodoer / JS-Tap
  JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the target…
  ☆410Updated 7 months ago
• Rolix44 / Kubestroyer
  Kubernetes exploitation tool
  ☆363Updated last year
• RedTeamPentesting / resocks
  mTLS-Encrypted Back-Connect SOCKS5 Proxy
  ☆474Updated 2 years ago
• CravateRouge / autobloody
  Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound
  ☆658Updated 2 months ago
• horizon3ai / CVE-2022-40684
  A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
  ☆355Updated 3 years ago
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆531Updated last month
• ttpreport / ligolo-mp
  Multiplayer pivoting solution
  ☆471Updated last month
• aniqfakhrul / powerview.py
  Just another Powerview alternative but on steroids
  ☆849Updated last month
• wietze / ArgFuscator.net
  ArgFuscator.net is an open-source, stand-alone web application that helps generate obfuscated command lines for common system-native exec…
  ☆385Updated 8 months ago
• hakaioffsec / IngressNightmare-PoC
  This is a PoC code to exploit the IngressNightmare vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974).
  ☆242Updated 9 months ago
• FalconOpsLLC / goexec
  Windows remote execution multitool
  ☆755Updated 2 months ago
• Vozec / CVE-2023-7028
  This repository presents a proof-of-concept of CVE-2023-7028
  ☆241Updated last year
• RickdeJager / cupshax
  ☆233Updated last year
• wh0amitz / SharpADWS
  Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).
  ☆580Updated last year
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆620Updated last year
• jm33-m0 / SSH-Harvester
  Harvest passwords automatically from OpenSSH server
  ☆377Updated 2 years ago
• MrSaighnal / GCR-Google-Calendar-RAT
  Google Calendar RAT is a PoC of Command&Control over Google Calendar Events
  ☆260Updated 4 months ago
• lexfo / sshimpanzee
  SSHD Based implant supporting tunneling mecanisms to reach the C2 (DNS, ICMP, HTTP Encapsulation, HTTP/Socks Proxies, UDP...)
  ☆281Updated 9 months ago
• testanull / ProxyNotShell-PoC
  ☆414Updated 3 years ago
• grimlockx / ADCSKiller
  An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
  ☆736Updated 2 years ago
• ScorpionesLabs / MSSqlPwner
  ☆398Updated 9 months ago
• expl0itabl3 / Toolies
  Ad hoc collection of Red Teaming & Active Directory tooling.
  ☆225Updated 2 years ago
• tylerdotrar / SigmaPotato
  SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…
  ☆441Updated last year
• p0dalirius / smbclient-ng
  smbclient-ng, a fast and user friendly way to interact with SMB shares.
  ☆986Updated last month
• EvilBytecode / GoRedOps
  🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific…
  ☆620Updated 7 months ago
• doyensec / Session-Hijacking-Visual-Exploitation
  Session Hijacking Visual Exploitation
  ☆210Updated last year