Alternatives and similar repositories for Core

Users that are interested in Core are comparing it to the libraries listed below

• fashionproof / CheckSafeBoot
  I used this to see if an EDR is running in Safe Mode
  ☆37Updated 4 years ago
• tothi / PowerLessShell
  Run PowerShell command without invoking powershell.exe
  ☆35Updated 3 years ago
• aaaddress1 / xlsKami
  Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets
  ☆48Updated 3 years ago
• xx0hcd / Alt-Beacon-Payload
  Beacon payload using AV bypass method from https://github.com/fullmetalcache/CsharpMMNiceness and shellcode generated from https://github…
  ☆20Updated 4 years ago
• mobdk / WinBoost
  Execute Mimikatz with different technique
  ☆51Updated 3 years ago
• magisterquis / shelloverreversessh
  A little implant which SSH's back with a shell
  ☆38Updated 3 years ago
• ceramicskate0 / BOF-Builder
  C# .Net 5.0 project to build BOF (Beacon Object Files) in mass
  ☆28Updated last year
• EspressoCake / Aggressor_Scripts
  A compilation of Aggressor/Sleep scripts for operational purposes that I've made.
  ☆11Updated 3 years ago
• GetRektBoy724 / JALSI
  JALSI - Just Another Lame Shellcode Injector
  ☆30Updated 3 years ago
• Tw1sm / HTTPS-MalleableC2-Config
  Create Cobalt Strike malleable C2 profiles with HTTPS configs
  ☆18Updated 5 years ago
• Kudaes / Scripts
  Repository for dirty scripts and PoCs
  ☆18Updated 4 months ago
• EncodeGroup / SharpDirLister
  .NET 4.0 Fast Directory / File Lister
  ☆26Updated 4 years ago
• jnqpblc / SharpDir
  SharpDir is a simple code set to search both local and remote file systems for files and is compatible with Cobalt Strike.
  ☆27Updated 6 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• moloch-- / DarkLoadLibrary
  LoadLibrary for offensive operations
  ☆33Updated 3 years ago
• xforcered / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆27Updated 3 years ago
• invictus-0x90 / Docker-C3
  Example of running C3 (https://github.com/FSecureLABS/C3) in a Docker container
  ☆27Updated 3 years ago
• CUHKJason / BOF-klist
  A simple BOF implementation of klist using Windows API
  ☆32Updated 3 years ago
• 0xC01DF00D / Mimigoatz
  Alternative Mimikatz LSASS DUMPER
  ☆12Updated 5 years ago
• audibleblink / davil
  leaking net-ntlm with webdav
  ☆25Updated 4 years ago
• Gr1mmie / SharpShellCodeObfus
  Caeser Cipher your shellcode!
  ☆21Updated 3 years ago
• S3cur3Th1sSh1t / LDAP-Signing-Scanner
  A little scanner to check the LDAP Signing state
  ☆46Updated 3 years ago
• hausec / Set-RBCDBytes
  ☆18Updated 4 years ago
• crawl3r / FunWithAMSI
  A repo to hold any bypasses I work on/study/whatever
  ☆19Updated 4 years ago
• boku7 / SCMKit
  Source Code Management Attack Toolkit
  ☆12Updated 2 years ago
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆47Updated 4 years ago
• jnqpblc / SharpReg
  SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.
  ☆29Updated 5 years ago
• WingsOfDoom / ICU
  quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…
  ☆31Updated 5 years ago
• leonjza / tc2
  treafik fronted c2 examples
  ☆26Updated 4 years ago
• timwhitez / JmpUnhook
  Ntdll Unhooking POC
  ☆19Updated 2 years ago