Alternatives and similar repositories for APT34:

Users that are interested in APT34 are comparing it to the libraries listed below

• OneLogicalMyth / zeroday-powershell
  A PowerShell example of the Windows zero day priv esc
  ☆326Updated 6 years ago
• 0xeb-bp / bluekeep
  Public work for CVE-2019-0708
  ☆292Updated 5 years ago
• Ziconius / FudgeC2
  FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
  ☆254Updated 2 years ago
• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆175Updated 4 years ago
• ZonkSec / persistence-aggressor-script
  initial commit
  ☆174Updated 6 years ago
• kmkz / exploit
  Exploits and advisories
  ☆190Updated 4 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆211Updated last month
• rsmudge / metasploit-loader
  A client compatible with Metasploit's staging protocol
  ☆257Updated 7 years ago
• vysecurity / morphHTA
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆523Updated 2 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆173Updated 6 years ago
• outflanknl / Excel4-DCOM
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆325Updated 6 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆233Updated 2 years ago
• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆257Updated 6 years ago
• FuzzySecurity / DefCon25
  UAC 0day, all day!
  ☆278Updated 7 years ago
• DamonMohammadbagher / Meterpreter_Payload_Detection
  Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool
  ☆162Updated last year
• Und3rf10w / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆236Updated 2 years ago
• z0noxz / powerstager
  A payload stager using PowerShell
  ☆184Updated 5 years ago
• threatexpress / tinyshell
  ☆169Updated 7 years ago
• 0x09AL / DNS-Persist
  DNS-Persist is a post-exploitation agent which uses DNS for command and control.
  ☆210Updated 7 years ago
• rogue-kdc / CVE-2019-0841
  PoC code for CVE-2019-0841 Privilege Escalation vulnerability
  ☆240Updated 6 years ago
• ramen0x3f / AggressorScripts
  ☆272Updated 2 years ago
• 0x09AL / DropboxC2C
  DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.
  ☆150Updated 6 years ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆286Updated 7 years ago
• trustedsec / nps_payload
  This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several dif…
  ☆442Updated last year
• two06 / Inception
  Provides In-memory compilation and reflective loading of C# apps for AV evasion.
  ☆369Updated last year
• rxwx / CVE-2018-0802
  PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
  ☆270Updated 7 years ago
• blacknbunny / mcreator
  Encoded Reverse Shell Generator With Techniques To Bypass AV's
  ☆146Updated 4 years ago
• Mr-Un1k0d3r / MaliciousClickOnceGenerator
  Quick Malicious ClickOnceGenerator for Red Team
  ☆249Updated 4 years ago
• Arno0x / DBC2
  DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any m…
  ☆295Updated 7 years ago
• bhdresh / lazykatz
  Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…
  ☆198Updated 7 years ago