Alternatives and similar repositories for CoreClass:

Users that are interested in CoreClass are comparing it to the libraries listed below

• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• GKNSB / HTMLSmuggler
  Smuggle a file to a user's browser
  ☆20Updated 3 years ago
• CompassSecurity / PowerLsassSilentProcessExit
  ☆24Updated 3 years ago
• duckbillsecurity / pdf-smuggler
  Create PDFs with HTML smuggling attachments that save on opening the document.
  ☆29Updated last year
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆66Updated 10 months ago
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆39Updated 2 years ago
• 0xe7 / RoastInTheMiddle
  ☆71Updated last year
• m8sec / EAPrimer
  C# project to Reflectively load .Net assemblies in memory
  ☆17Updated 10 months ago
• GetRektBoy724 / ReversePowernoid
  Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)
  ☆30Updated 3 years ago
• Octoberfest7 / aggressor_snippets
  A collection of random small Aggressor snippets that don't warrant their own repo
  ☆23Updated 2 years ago
• praetorian-inc / Matryoshka
  Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.
  ☆40Updated 3 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆24Updated 2 years ago
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆26Updated 2 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• EspressoCake / Cobalt_Strike_Ansible
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆34Updated 3 years ago
• p4p1 / havoc-store
  A simple website to act as a store for havoc modules and extensions
  ☆26Updated 3 months ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆36Updated 5 months ago
• curtbraz / PhishingFromMS365API
  A Couple of Python Scripts Leveraging MS365's GraphAPI to Send Custom Calendar Events / Emails from Cheap O365 Accounts
  ☆18Updated last year
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆25Updated 4 years ago
• b4r0nd3l4b1rr4 / Teams-CS-Notifier
  ☆15Updated 2 years ago
• threatexpress / mythic2modrewrite
  Generate Apache mod_rewrite rules for Mythic C2 profiles
  ☆30Updated 3 years ago
• improsec / CaddyStager
  ☆38Updated 2 years ago
• scriptchildie / gohellsgate
  Golang Implementation of Hell's gate
  ☆17Updated last year
• S3cur3Th1sSh1t / OffensiveNim
  My experiments in weaponizing Nim (https://nim-lang.org/)
  ☆17Updated 2 years ago
• EspressoCake / ReadRemoteProcessCommandline_BOF
  ☆25Updated 11 months ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year