Alternatives and similar repositories for zerologon

Users that are interested in zerologon are comparing it to the libraries listed below

• Dump-GUY / VoiceC2_POC

  View on GitHub
  Simple POC of Voice C2 using Speech Recognition
  ☆13Apr 27, 2022Updated 3 years ago
• qingege888 / ApiAddUserTools

  View on GitHub
  BypassAV无net添加windows用户
  ☆10Jan 7, 2021Updated 5 years ago
• DragoQCC / ShellcodeEncryption

  View on GitHub
  Used to AES encrypt shellcode, can take password or use built in default should be used with Iron Injector to generate and execute shellc…
  ☆15Mar 18, 2022Updated 3 years ago
• Nyamort / CVE-2024-52301

  View on GitHub
  ☆20Nov 14, 2024Updated last year
• DragoQCC / Iron-Injector

  View on GitHub
  Interactive program for loading AES encrypted shellcode with Dynamic Invocation, and interactive .NET assemblies in memory.
  ☆13Mar 16, 2022Updated 3 years ago
• plackyhacker / DynamicEarlyBird

  View on GitHub
  An example of using Dynamic Invoke to Inject Shellcode using the Early Bird Method.
  ☆14Dec 14, 2023Updated 2 years ago
• arlyone / Apache-Struts-0Day-Exploit

  View on GitHub
  Critical Remote Code Execution Vulnerability (CVE-2018-11776) Found in Apache Struts.
  ☆15Jul 30, 2020Updated 5 years ago
• HadarShahar / process-hiders

  View on GitHub
  Hides processes from the windows task manager using IAT hooking.
  ☆22Mar 30, 2021Updated 4 years ago
• BC-SECURITY / SocksProxyServer-Plugin

  View on GitHub
  Socks Proxy Server Plugin for Invoke-SocksProxy
  ☆18Mar 24, 2025Updated 10 months ago
• kavishkagihan / Cannon

  View on GitHub
  Cannon is a post-exploitation framework fully developed using python3. You will be able to download and upload files, run pre-defined mod…
  ☆19Jul 21, 2021Updated 4 years ago
• parazyd / tordam

  View on GitHub
  A library for peer discovery inside the Tor network
  ☆28Apr 19, 2024Updated last year
• su1s / encryptor

  View on GitHub
  Windows shellcode encoding and encrypting tool
  ☆20May 4, 2022Updated 3 years ago
• Untouchable17 / ARP-Spoofing-Defender

  View on GitHub
  ARP Spoofing Defender is a project designed to protect local networks from ARP Spoofing attacks. ARP Spoofing Defender provides mechanism…
  ☆23Nov 24, 2025Updated 2 months ago
• iDigitalFlame / XrMT

  View on GitHub
  e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!
  ☆27Aug 19, 2024Updated last year
• horizon3ai / CVE-2024-9465

  View on GitHub
  Proof of Concept Exploit for CVE-2024-9465
  ☆30Oct 9, 2024Updated last year
• infobyte / Exploit-CVE-2021-21086

  View on GitHub
  ☆28Dec 2, 2021Updated 4 years ago
• QueenSquishy / Zombie

  View on GitHub
  General Content
  ☆25Dec 23, 2025Updated last month
• k3idii / CobaltStrike-Tools

  View on GitHub
  Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...
  ☆28Apr 13, 2023Updated 2 years ago
• godylockz / CVE-2024-23897

  View on GitHub
  POC for CVE-2024-23897 Jenkins File-Read
  ☆38Nov 20, 2025Updated 2 months ago
• newtonguass / ADPenLab

  View on GitHub
  ☆32Jun 10, 2020Updated 5 years ago
• codecrack3 / HTA-Exploit-

  View on GitHub
  Microsoft Windows HTA (HTML Application) - Remote Code Execution
  ☆30Aug 21, 2015Updated 10 years ago
• Faran-17 / EarlyBird-APC-Injection

  View on GitHub
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆35Oct 31, 2023Updated 2 years ago
• stclaird / Cloud-IP-Address-Ranges

  View on GitHub
  Imports IP address and CIDR information into a SQLite Database format
  ☆15Feb 3, 2026Updated last week
• whokilleddb / ASPxecute

  View on GitHub
  Execute shellcode via ASPNET compiler
  ☆61Oct 2, 2025Updated 4 months ago
• robertguetzkow / ets5-password-recovery

  View on GitHub
  ETS5 Password Recovery Tool is a PoC for CVE-2021-36799
  ☆33Jul 23, 2022Updated 3 years ago
• DeimosDemise / AbaddonDropper

  View on GitHub
  This is a free & Open source File dropper that is made strictly for EdUcAtIoNaL pUrPoSeS of course
  ☆32Jun 23, 2022Updated 3 years ago
• zhzyker / cobalt-strike

  View on GitHub
  Resources About Cobalt Strike. 100+ Tools And 200+ Posts.
  ☆29May 31, 2020Updated 5 years ago
• mastercodeon314 / NugetBackdoor

  View on GitHub
  A framework for backdooring Microsoft Nuget packages.
  ☆10Jan 9, 2024Updated 2 years ago
• yoryio / CVE-2024-27198

  View on GitHub
  Exploit for CVE-2024-27198 - TeamCity Server
  ☆35Dec 19, 2024Updated last year
• PL-V / Firefox-WebInject

  View on GitHub
  Firefox webInjector capable of injecting codes into webpages using a mitmproxy.
  ☆42Oct 30, 2022Updated 3 years ago
• carlosevieira / CVE-2022-40684

  View on GitHub
  PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)
  ☆87Oct 13, 2022Updated 3 years ago
• Wra7h / ARCInject

  View on GitHub
  Overwrite a process's recovery callback and execute with WER
  ☆103Apr 17, 2022Updated 3 years ago
• lookfree / claude-code-debugger

  View on GitHub
  ☆25Nov 30, 2025Updated 2 months ago
• PortSwigger / serialization-examples

  View on GitHub
  ☆42Dec 1, 2023Updated 2 years ago
• pushsecurity / phishing-techniques

  View on GitHub
  A collection of phishing techniques used to evade detection. #nolockdown
  ☆23Aug 28, 2025Updated 5 months ago
• codiobert / vmware-vmmon-fix

  View on GitHub
  This shell script fix VMWare 17.x "cannot open /dev/vmmon" error in Ubuntu 21.10 and Ubuntu 22.04
  ☆11Feb 5, 2023Updated 3 years ago
• ibaiw / wscan

  View on GitHub
  本来要自己写个脚本存放poc，发现有大佬已经写了个轮子，使用J2ExpSuite，后期添加POC
  ☆12Feb 17, 2023Updated 2 years ago
• v1k1ngfr / exploits-rconfig

  View on GitHub
  Exploit codes for rconfig <= 3.9.4
  ☆12Mar 17, 2020Updated 5 years ago
• isafe / CleanLog

  View on GitHub
  Windows日志清除工具
  ☆10Apr 3, 2023Updated 2 years ago