Alternatives and similar repositories for RTO_Aggressor_Script

Users that are interested in RTO_Aggressor_Script are comparing it to the libraries listed below

• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆40Updated 2 years ago
• TunnelGRE / XOR_NIM_Inject
  Simple shellcode injection in Nim encrypted in XOR
  ☆22Updated 2 years ago
• HackingLZ / TomcatBackdoorPoC
  Tomcat backdoor based on CS blog
  ☆27Updated 2 years ago
• watchtowrlabs / CVE-2024-50623
  Cleo Unrestricted file upload and download PoC (CVE-2024-50623)
  ☆25Updated last year
• vysecurity / msmailprobe2
  Office 365 and Exchange Enumeration Version 2
  ☆18Updated last year
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆38Updated 5 years ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 3 years ago
• wsummerhill / IPv4Fuscation-Encrypted
  ☆20Updated last year
• CodeXTF2 / evasion-adventures-files
  Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"
  ☆31Updated 3 years ago
• 0xbad53c / webshells
  My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the interne…
  ☆21Updated last year
• LuxNoBulIshit / Smug_Fu3k
  ☆53Updated 3 years ago
• Sachinart / CVE-2024-0012-POC
  CVE-2024-0012 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) RCE POC
  ☆20Updated last year
• RalfHacker / ExchangeCheckPack
  ☆10Updated last year
• MaorSabag / interactive-execute-shellcode
  A simple PoC of injection shellcode into a remote process and get the output using namepipe
  ☆44Updated 2 years ago
• y00ga-sec / Forensike
  Remotely dump NT hashes through Windows Crash dumps
  ☆34Updated last year
• TerminalJockey / Kudzu
  Kudzu is a Go C2 platform with an emphasis on extensibility.
  ☆11Updated 4 years ago
• atabetnouhaila / API-hashing
  ☆18Updated this week
• 0xbad53c / OffSecOps-Arsenal
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆45Updated last year
• jsecu / ElevatedEvents
  ☆30Updated 3 years ago
• DragoQCC / ShellcodeEncryption
  Used to AES encrypt shellcode, can take password or use built in default should be used with Iron Injector to generate and execute shellc…
  ☆15Updated 3 years ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆22Updated 3 years ago
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆102Updated 2 years ago
• Sh0ckFR / API-Hashing
  A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++
  ☆37Updated 2 years ago
• mdsecactivebreach / PleasantTools
  Tools for Attacking Pleasant Password Server
  ☆22Updated 2 years ago
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆38Updated 3 years ago
• ChoiSG / havoc2nginx
  havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…
  ☆12Updated 2 years ago
• ZephrFish / DynamicMSBuilder
  A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation
  ☆37Updated last month
• ProcessusT / HavocHub
  PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are rela…
  ☆43Updated 6 months ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆35Updated 2 years ago
• vestjoe / cobaltstrike_services
  AutoStart teamserver and listeners with services
  ☆75Updated 4 years ago