Alternatives and similar repositories for C4

Users that are interested in C4 are comparing it to the libraries listed below

• xpn / CloudInject
  ☆115Updated last year
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆146Updated last year
• morRubin / NegoExRelay
  ☆88Updated 3 years ago
• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆179Updated last month
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆119Updated 2 years ago
• JumpsecLabs / WALK_WebAssembly_Lure_Krafter
  A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …
  ☆96Updated last year
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆57Updated 4 months ago
• kapellos / LNKSmuggler
  A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
  ☆89Updated 11 months ago
• decoder-it / ChgPass
  ☆136Updated 10 months ago
• rasta-mouse / SpawnWith
  ☆109Updated 9 months ago
• whokilleddb / hoontr
  A hoontr must hoont
  ☆101Updated 2 weeks ago
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆102Updated last month
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆92Updated last year
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆80Updated 2 years ago
• whokilleddb / sinister-vsix
  Blog/Journal on how to backdoor VSCode extensions
  ☆75Updated 4 months ago
• 0xthirteen / rpc2wc
  RPC to WebClient startup
  ☆53Updated 3 months ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 3 years ago
• SafeBreach-Labs / RPC-Racer
  Toolset to manipulate RPC clients by finding delayed services and masquerading as them
  ☆104Updated 3 months ago
• xct / adopt
  Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆19Updated 3 years ago
• Krypteria / Neo4LDAP
  Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…
  ☆91Updated 3 weeks ago
• two06 / CerealKiller
  .NET deserialization hunter
  ☆81Updated last year
• nickvourd / SkyFall-Pack
  Your Skyfall Infrastructure Pack
  ☆88Updated 3 weeks ago
• KingOfTheNOPs / Get-NetNTLM
  Internal Monologue BOF
  ☆79Updated 11 months ago
• OtterHacker / AWSRedirector
  ☆57Updated 9 months ago
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆105Updated 4 months ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆107Updated 2 years ago
• synacktiv / Prox-Ez
  ☆99Updated 10 months ago
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆161Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated last year
• zyn3rgy / ClickonceHunter
  Golang search engine scraper intended for identification of published ClickOnce deployments
  ☆92Updated last year