Alternatives and similar repositories for Nimbo-C2

Users that are interested in Nimbo-C2 are comparing it to the libraries listed below

• Bl4ckM1rror / FUD-UUID-Shellcode
  ☆331Updated 2 years ago
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆378Updated 2 years ago
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆416Updated 2 years ago
• g3tsyst3m / elevationstation
  elevate to SYSTEM any way we can! Metasploit and PSEXEC getsystem alternative
  ☆372Updated last year
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆443Updated 2 years ago
• BC-SECURITY / Malleable-C2-Profiles
  Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.
  ☆380Updated 2 years ago
• d4rckh / grc2
  grim reaper c2
  ☆339Updated 2 years ago
• capt-meelo / laZzzy
  laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
  ☆489Updated 2 years ago
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆481Updated 3 months ago
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆461Updated last year
• paranoidninja / Brute-Ratel-C4-Community-Kit
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆281Updated last year
• icyguider / Nimcrypt2
  .NET, PE, & Raw Shellcode Packer/Loader Written in Nim
  ☆805Updated 2 years ago
• GeorgePatsias / ScareCrow-CobaltStrike
  Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)
  ☆465Updated 3 years ago
• 4g3nt47 / Striker
  A Command and Control (C2)
  ☆307Updated 2 years ago
• EvilBytecode / EDR-XDR-AV-Killer
  Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
  ☆287Updated 4 months ago
• netero1010 / GhostTask
  A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.
  ☆571Updated 8 months ago
• MaorSabag / TrueSightKiller
  CPP AV/EDR Killer
  ☆442Updated last year
• frkngksl / NimExec
  Fileless Command Execution for Lateral Movement in Nim
  ☆378Updated last year
• lypd0 / DeadPotato
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆438Updated last year
• chvancooten / NimPackt-v1
  Nim-based assembly packer and shellcode loader for opsec & profit
  ☆483Updated 2 years ago
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆349Updated 2 years ago
• threatexpress / random_c2_profile
  Cobalt Strike random C2 Profile generator
  ☆663Updated 2 years ago
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• wh0amitz / KRBUACBypass
  UAC Bypass By Abusing Kerberos Tickets
  ☆499Updated 2 years ago
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆608Updated last year
• icyguider / UAC-BOF-Bonanza
  Collection of UAC Bypass Techniques Weaponized as BOFs
  ☆548Updated last year
• CodeXTF2 / ScreenshotBOF
  An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…
  ☆446Updated 4 months ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆189Updated 3 years ago
• SaadAhla / Shellcode-Hide
  This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp…
  ☆424Updated 2 years ago
• Idov31 / MrKaplan
  MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
  ☆265Updated last year