Alternatives and similar repositories for APT34:

Users that are interested in APT34 are comparing it to the libraries listed below

• OneLogicalMyth / zeroday-powershell
  A PowerShell example of the Windows zero day priv esc
  ☆326Updated 6 years ago
• Ziconius / FudgeC2
  FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
  ☆251Updated last year
• 0xeb-bp / bluekeep
  Public work for CVE-2019-0708
  ☆291Updated 5 years ago
• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆257Updated 6 years ago
• ramen0x3f / AggressorScripts
  ☆272Updated 2 years ago
• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆174Updated 4 years ago
• 0x09AL / DNS-Persist
  DNS-Persist is a post-exploitation agent which uses DNS for command and control.
  ☆211Updated 7 years ago
• Und3rf10w / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆228Updated 2 years ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆285Updated 7 years ago
• rsmudge / metasploit-loader
  A client compatible with Metasploit's staging protocol
  ☆255Updated 7 years ago
• bluscreenofjeff / Malleable-C2-Randomizer
  A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls
  ☆443Updated 2 years ago
• outflanknl / Excel4-DCOM
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆323Updated 6 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆210Updated last month
• 0x09AL / DropboxC2C
  DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.
  ☆150Updated 6 years ago
• b4rtik / RedPeanut
  RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
  ☆327Updated last year
• two06 / Inception
  Provides In-memory compilation and reflective loading of C# apps for AV evasion.
  ☆368Updated last year
• rogue-kdc / CVE-2019-0841
  PoC code for CVE-2019-0841 Privilege Escalation vulnerability
  ☆240Updated 6 years ago
• Mr-Un1k0d3r / MaliciousClickOnceGenerator
  Quick Malicious ClickOnceGenerator for Red Team
  ☆249Updated 4 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆231Updated 2 years ago
• threatexpress / tinyshell
  ☆167Updated 7 years ago
• trustedsec / nps_payload
  This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several dif…
  ☆441Updated last year
• apt69 / COMahawk
  Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
  ☆349Updated 5 years ago
• DimopoulosElias / alpc-mmc-uac-bypass
  UAC Bypass with mmc via alpc
  ☆156Updated 6 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆172Updated 5 years ago
• kmkz / exploit
  Exploits and advisories
  ☆189Updated 4 years ago
• secretsquirrel / fido
  Teaching old shellcode new tricks
  ☆205Updated 7 years ago
• tevora-threat / eternal_blue_powershell
  Port of eternal blue exploits to powershell
  ☆150Updated 7 years ago
• nettitude / Invoke-PowerThIEf
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆130Updated last month
• Arno0x / NtlmRelayToEWS
  ntlm relay attack to Exchange Web Services
  ☆331Updated 7 years ago
• vysecurity / morphHTA
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆521Updated 2 years ago