Alternatives and similar repositories for APT34

Users that are interested in APT34 are comparing it to the libraries listed below

• rxwx / CVE-2018-0802
  PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
  ☆270Updated 7 years ago
• 0x09AL / DNS-Persist
  DNS-Persist is a post-exploitation agent which uses DNS for command and control.
  ☆210Updated 7 years ago
• DamonMohammadbagher / Meterpreter_Payload_Detection
  Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool
  ☆162Updated 2 years ago
• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆175Updated 4 years ago
• Ziconius / FudgeC2
  FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
  ☆254Updated 2 years ago
• kmkz / exploit
  Exploits and advisories
  ☆190Updated 5 years ago
• blacknbunny / mcreator
  Encoded Reverse Shell Generator With Techniques To Bypass AV's
  ☆146Updated 4 years ago
• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆260Updated 6 years ago
• FuzzySecurity / DefCon25
  UAC 0day, all day!
  ☆279Updated 7 years ago
• OneLogicalMyth / zeroday-powershell
  A PowerShell example of the Windows zero day priv esc
  ☆326Updated 6 years ago
• rogue-kdc / CVE-2019-0841
  PoC code for CVE-2019-0841 Privilege Escalation vulnerability
  ☆239Updated 6 years ago
• rsmudge / metasploit-loader
  A client compatible with Metasploit's staging protocol
  ☆257Updated 7 years ago
• ZonkSec / persistence-aggressor-script
  initial commit
  ☆174Updated 7 years ago
• 0xeb-bp / bluekeep
  Public work for CVE-2019-0708
  ☆292Updated 5 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆172Updated 6 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆211Updated 4 months ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆286Updated 7 years ago
• bhdresh / lazykatz
  Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…
  ☆197Updated 7 years ago
• DimopoulosElias / alpc-mmc-uac-bypass
  UAC Bypass with mmc via alpc
  ☆156Updated 6 years ago
• Und3rf10w / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆241Updated 2 years ago
• 0x09AL / Browser-C2
  Post Exploitation agent which uses a browser to do C2 operations.
  ☆102Updated 7 years ago
• Leoid / CVE-2019-0708
  Only Hitting PoC [Tested on Windows Server 2008 r2]
  ☆128Updated 6 years ago
• enigma0x3 / Powershell-Payload-Excel-Delivery
  Uses Invoke-Shellcode to execute a payload and persist on the system.
  ☆115Updated 8 years ago
• nettitude / Invoke-PowerThIEf
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆131Updated 4 months ago
• DamonMohammadbagher / NativePayload_DNS
  C# code for Transferring Backdoor Payloads by DNS Traffic and Bypassing Anti-viruses
  ☆270Updated 2 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆215Updated 4 years ago
• johnjohnsp1 / Shellcode-Via-HTA
  How To Execute Shellcode via HTA
  ☆140Updated 7 years ago
• rxwx / CVE-2017-8570
  Proof of Concept exploit for CVE-2017-8570
  ☆186Updated 7 years ago
• rip1s / CVE-2017-11882
  CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.
  ☆329Updated 7 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆232Updated 2 years ago