Alternatives and similar repositories for APT34

Users that are interested in APT34 are comparing it to the libraries listed below

• rxwx / CVE-2017-11882
  Proof-of-Concept exploits for CVE-2017-11882
  ☆42Updated 7 years ago
• k-vitali / operation-shadowhammer
  This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.
  ☆12Updated 6 years ago
• d00rt / hijacked_lokibot_version
  ☆24Updated 7 years ago
• vallejocc / Malware-Analysis-scripts
  Scripts targeting specific families
  ☆13Updated 8 years ago
• 649 / EquationDrug
  The ORIGINAL decrypted copies of the Shadow Broker's equation_drug release. Contains Equation group's espionage DLL implants library. Use…
  ☆18Updated 7 years ago
• ycscaly / Privilege-Escalation-Framework
  Privilege Escilation training project, with an emphasis on the distinction between vulnerability research & it's exposure and exploitatio…
  ☆35Updated 8 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 7 years ago
• ElevenPaths / PESTO
  ☆26Updated 5 years ago
• mortychannel / lnkexploit
  ☆43Updated 6 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆52Updated 6 years ago
• woanware / application-restriction-bypasses
  A set of compiled application restriction bypasses
  ☆29Updated 8 years ago
• ChrisAD / ads-payload
  Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…
  ☆53Updated last year
• carnal0wnage / ApplicationWhitelistBypassTechniques
  A Catalog of Application Whitelisting Bypass Techniques
  ☆31Updated 10 years ago
• LeonardoNve / edm
  Encima De la Mosca HTTP proxy POC for infecting files on-the-fly and SSLstrip2
  ☆41Updated 6 years ago
• whitel1st / GP_Hijack
  Group Policy Hijacking
  ☆32Updated 7 years ago
• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆27Updated 8 years ago
• alberties / Ghostfuscator
  The Python Password-Protected Obfuscator
  ☆34Updated 6 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆46Updated 8 years ago
• EgeBalci / Injector
  Simple shellcode injector.
  ☆14Updated 6 years ago
• ThisIsSecurity / malware
  ☆43Updated 6 years ago
• cervoise / Abuse-bash-for-windows
  Pentest scripts for abuse Bash on Windows (Cygwin/WSL) - HackLu 2018
  ☆45Updated 6 years ago
• FuzzySecurity / CapstoneKeystone-PowerShell
  PowerShell Module Bindings for Capstone/Keystone
  ☆24Updated 8 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆46Updated 8 years ago
• Souhardya / Custom-Exploits
  Random stuff
  ☆16Updated 7 years ago
• geek-repo / C2-Blockchain
  This is a concept poc of command and control server implemented over blockchain
  ☆52Updated 5 years ago
• decoder-it / whoami-priv
  Slides from my talk "whoami /priv" at Romhack 2018
  ☆39Updated 6 years ago
• blacknbunny / peanalyzer
  Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit
  ☆100Updated 6 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago