Alternatives and similar repositories for APT34:

Users that are interested in APT34 are comparing it to the libraries listed below

• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆174Updated 4 years ago
• kmkz / exploit
  Exploits and advisories
  ☆188Updated 4 years ago
• OneLogicalMyth / zeroday-powershell
  A PowerShell example of the Windows zero day priv esc
  ☆324Updated 6 years ago
• Ziconius / FudgeC2
  FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
  ☆251Updated last year
• ZonkSec / persistence-aggressor-script
  initial commit
  ☆173Updated 6 years ago
• z0noxz / powerstager
  A payload stager using PowerShell
  ☆183Updated 5 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆231Updated 2 years ago
• b4rtik / RedPeanut
  RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
  ☆328Updated last year
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆283Updated 7 years ago
• DamonMohammadbagher / Meterpreter_Payload_Detection
  Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool
  ☆161Updated last year
• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆256Updated 6 years ago
• bhdresh / lazykatz
  Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…
  ☆198Updated 7 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆172Updated 5 years ago
• Cn33liz / StarFighters
  A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
  ☆319Updated 7 years ago
• Mr-Un1k0d3r / MaliciousClickOnceGenerator
  Quick Malicious ClickOnceGenerator for Red Team
  ☆249Updated 4 years ago
• vysecurity / morphHTA
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆519Updated last year
• outflanknl / Excel4-DCOM
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆323Updated 5 years ago
• Und3rf10w / Aggressor-scripts
  Aggressor scripts I've made for Cobalt Strike
  ☆405Updated last year
• 0x09AL / DNS-Persist
  DNS-Persist is a post-exploitation agent which uses DNS for command and control.
  ☆211Updated 7 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆208Updated last week
• Und3rf10w / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆227Updated 2 years ago
• rsmudge / metasploit-loader
  A client compatible with Metasploit's staging protocol
  ☆254Updated 7 years ago
• rxwx / CVE-2018-0802
  PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
  ☆271Updated 7 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆214Updated 4 years ago
• FuzzySecurity / DefCon25
  UAC 0day, all day!
  ☆277Updated 7 years ago
• Arno0x / DBC2
  DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any m…
  ☆295Updated 7 years ago
• 0xeb-bp / bluekeep
  Public work for CVE-2019-0708
  ☆290Updated 5 years ago
• secretsquirrel / fido
  Teaching old shellcode new tricks
  ☆205Updated 7 years ago
• nettitude / Invoke-PowerThIEf
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆130Updated 3 weeks ago
• rasta-mouse / Aggressor-Script
  Collection of Aggressor Scripts for Cobalt Strike
  ☆169Updated 6 years ago