Alternatives and similar repositories for exploitpack-from-an-APT-infrastructure

Users that are interested in exploitpack-from-an-APT-infrastructure are comparing it to the libraries listed below

• CodeXTF2 / cobaltstrike-headless
  Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
  ☆147Updated 3 years ago
• Cobalt-Strike / sleep_python_bridge
  This project is 'bridge' between the sleep and python language. It allows the control of a Cobalt Strike teamserver through python withou…
  ☆187Updated 6 months ago
• xRET2pwn / PickleC2
  PickleC2 is a post-exploitation and lateral movements framework
  ☆96Updated 4 years ago
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆65Updated 3 years ago
• Aetsu / Neton
  Neton is a tool for getting information from Internet connected sandboxes
  ☆96Updated 3 years ago
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆221Updated 3 years ago
• plackyhacker / Peruns-Fart
  Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.
  ☆117Updated 4 years ago
• Sh0ckFR / Lockbit3.0-MpClient-Defender-PoC
  Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC
  ☆177Updated 3 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆241Updated last year
• klezVirus / SharpSelfDelete
  C# implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs
  ☆150Updated 4 years ago
• InitRoot / wodat
  Windows Oracle Database Attack Toolkit
  ☆80Updated 3 years ago
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆143Updated 3 years ago
• Cobalt-Strike / beacon_health_check
  This aggressor script uses a beacon's note field to indicate the health status of a beacon.
  ☆141Updated 4 years ago
• exploitblizzard / WindowsMDM-LPE-0Day
  CVE-2021-24084 Windows Local Privilege Escalation Left officially unpatched since 2020. Hence, its still a zero day
  ☆52Updated 3 years ago
• Gr1mmie / AtlasC2
  C# C2 Framework centered around Stage 1 operations
  ☆210Updated 3 years ago
• iomoath / SharpStrike
  A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.
  ☆200Updated 4 years ago
• su1s / encryptor
  Windows shellcode encoding and encrypting tool
  ☆20Updated 3 years ago
• TartarusLabs / Coyote
  Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engageme…
  ☆21Updated 3 years ago
• 34zY / Microsoft-Office-Word-MSHTML-Remote-Code-Execution-Exploit
  CVE-2021-40444
  ☆66Updated 4 years ago
• wietze / windows-dll-env-hijacking
  Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.
  ☆62Updated 3 years ago
• kensh1ro / Willie-C2
  A Golang implant that uses Discord as a C2 team server
  ☆65Updated last year
• JoelGMSec / PSAsyncShell
  PowerShell Asynchronous TCP Reverse Shell
  ☆158Updated 2 months ago
• Ne0nd0g / merlin-agent-dll
  ☆56Updated 9 months ago
• trickster0 / UDPlant
  UDP implant
  ☆67Updated 4 years ago
• mrd0x / pe2shc-to-cdb
  Convert shellcode generated using pe_2_shellcode to cdb format.
  ☆100Updated 4 years ago
• Flangvik / SharpProxyLogon
  C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection
  ☆252Updated 4 years ago
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆235Updated 3 years ago
• hackerhouse-opensource / ColorDataProxyUACBypass
  Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…
  ☆142Updated last week
• D00Movenok / goMalleable
  🔎🪲 Malleable C2 profiles parser and assembler written in golang
  ☆65Updated last year
• rsmudge / ZeroLogon-BOF
  ☆163Updated 3 years ago