Alternatives and similar repositories for CordKit

Users that are interested in CordKit are comparing it to the libraries listed below

• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆186Updated 7 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆128Updated 5 months ago
• chryzsh / awesome-bof
  🧠 The ultimate, community-curated resource for Beacon Object Files (BOFs) — tutorials, how-tos, deep dives, and reference materials.
  ☆93Updated last month
• mallo-m / Cpp-ExecAssembly
  C++ Reflective Assembly Loader
  ☆29Updated 9 months ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.
  ☆174Updated 9 months ago
• Sh4N4C1 / sh4loader
  ☆29Updated last year
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆119Updated last year
• ZERODETECTION / MSC_Dropper
  ☆232Updated last year
• jakobfriedl / conquest
  Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.
  ☆244Updated this week
• nromsdahl / squarephish2
  OAuth Device Code Phishing Toolkit
  ☆97Updated 3 months ago
• cybersectroll / TrollAMSI
  ☆185Updated 6 months ago
• Maldev-Academy / MaldevAcademyLdr.2
  RunPE implementation with multiple evasive techniques
  ☆253Updated 2 months ago
• ar0x4 / DockPiler
  ☆18Updated 5 months ago
• p4p1 / havoc-privkit
  a port of privkit bof for havoc
  ☆24Updated 2 years ago
• c2pain / RustPatchlessCLRLoader
  .NET assembly loader with patchless AMSI and ETW bypass in Rust
  ☆57Updated last year
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆201Updated 10 months ago
• Maldev-Academy / ElectronVulnScanner
  Automatically scan the file system to identify Electron applications vulnerable to ASAR tampering.
  ☆135Updated 3 weeks ago
• Thunter-HackTeam / EvilentCoerce
  ☆151Updated 7 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆99Updated 7 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆205Updated 10 months ago
• RePRGM / Nimperiments
  Various one-off pentesting projects written in Nim. Updates happen on a whim.
  ☆161Updated 5 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Updated 5 months ago
• SenSecurity / Founding
  Founding is a generator that will create a loader encrypted or obfuscated with different execution types
  ☆97Updated 3 months ago
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆114Updated 5 months ago
• 3lp4tr0n / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆179Updated last month
• thelikes / slivercloak
  PoC framework for Sliver compilation
  ☆23Updated 11 months ago
• rubenformation / ms-photos_NTLM_Leak
  New 0 day vulnerability allowing to leak NTLM hashes from browsers with one click
  ☆118Updated last month
• WKL-Sec / GregsBestFriend
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆203Updated 2 years ago
• LeighlinRamsay / GunnerC2
  ☆151Updated 2 months ago
• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆182Updated last month