Alternatives and similar repositories for C2PE:

Users that are interested in C2PE are comparing it to the libraries listed below

• fashionproof / CheckSafeBoot
  I used this to see if an EDR is running in Safe Mode
  ☆36Updated 4 years ago
• mobdk / Core
  Core bypass Windows Defender and execute any binary converted to shellcode
  ☆43Updated 3 years ago
• hyp3rlinx / NtFileSins
  Windows File Enumeration Intel Gathering Tool.
  ☆17Updated last year
• EspressoCake / Aggressor_Scripts
  A compilation of Aggressor/Sleep scripts for operational purposes that I've made.
  ☆11Updated 3 years ago
• knavesec / EyeWitnessTheFitness
  Exactly what it sounds like, which is something rad
  ☆22Updated 2 years ago
• shantanu561993 / heroku-reverse-proxy
  Spin up a reverse proxy quickly on Heroku
  ☆13Updated 4 years ago
• audibleblink / davil
  leaking net-ntlm with webdav
  ☆24Updated 4 years ago
• CCob / Jboss-Wilfly-Hashes-to-Hashcat
  Converts JBoss/Wildfly management users properties file to hashcat format compatible with mode 20
  ☆12Updated 4 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆18Updated 3 years ago
• EspressoCake / Cobalt_Strike_Ansible
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆34Updated 3 years ago
• leonjza / tc2
  treafik fronted c2 examples
  ☆26Updated 4 years ago
• warferik / CVE-2019-3980
  ☆17Updated 4 years ago
• moloch-- / DarkLoadLibrary
  LoadLibrary for offensive operations
  ☆33Updated 3 years ago
• crawl3r / FunWithAMSI
  A repo to hold any bypasses I work on/study/whatever
  ☆19Updated 4 years ago
• GetRektBoy724 / JALSI
  JALSI - Just Another Lame Shellcode Injector
  ☆30Updated 3 years ago
• mobdk / WinBoost
  Execute Mimikatz with different technique
  ☆51Updated 3 years ago
• 3xpl01tc0d3r / Abusing-Outlook
  This repository contains some details about abusing outlook.
  ☆27Updated 6 years ago
• vletoux / OxidBindings
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Updated 5 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆27Updated 5 years ago
• 0x3rhy / GetClipboard
  Cobalt Strike Get clipboard plugin
  ☆12Updated last year
• sailay1996 / FileWrite2system
  File Write Weapon for Privilege Escalation To get SYSTEM
  ☆18Updated 4 years ago
• APTortellini / DoH-Stager
  ☆14Updated 3 years ago
• vysecurity / AzureAppC2
  A script that can be deployed to Azure App for C2 / Proxy / Redirector
  ☆36Updated 5 years ago
• xenoscr / SharpMailBOF
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆14Updated 3 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 4 years ago
• GeorgePatsias / PayloadFactory
  C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
  ☆35Updated 3 years ago
• med0x2e / RT-EWS
  A Powershell module including a couple of cmdlets for EWS Enum/Exploitation.
  ☆17Updated 5 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆17Updated 4 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆29Updated 4 years ago