Alternatives and similar repositories for shadow-tls-client

Users that are interested in shadow-tls-client are comparing it to the libraries listed below

• Hagrid29 / BOF-SprayAD
  Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
  ☆47Updated 2 years ago
• timwhitez / memmod
  Fork & modify of Wireguard's Memmod
  ☆32Updated last year
• timwhitez / Doge-RecycledGate
  Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;
  ☆32Updated 3 years ago
• timwhitez / Spoofing-Gate
  (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll
  ☆43Updated 3 years ago
• timwhitez / Doge-ScreenShot
  desktop screenshot
  ☆30Updated 2 years ago
• timwhitez / Doge-COFFLdr
  Its a coff loader ported to go( Modified by TimWhite )
  ☆27Updated last year
• XiaoliChan / LDAPShell
  A wrapper of ldap_shell.py module which in ntlmrelayx
  ☆62Updated 2 years ago
• timwhitez / Bof2PIC
  BOF/COFF obj file to PIC(shellcode). by golang
  ☆39Updated 2 years ago
• Hagrid29 / BOF-DCOMPotato-PrintNotify
  Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
  ☆49Updated 2 years ago
• JDArmy / Lsass-Shtinkering
  dump lsass tool
  ☆39Updated 2 years ago
• timwhitez / iSliver
  Learning notes of amazing Sliver C2 project.
  ☆25Updated 2 years ago
• crisprss / magicDiagTrack
  DiagTrack Eop (From Service Account to SYSTEM)
  ☆23Updated 2 years ago
• timwhitez / Doge-RL
  Reflective DLL injection Execution
  ☆19Updated 2 years ago
• timwhitez / Doge-CLRLoad
  load assembly executable file in memory
  ☆41Updated last year
• evilashz / ProxyAPICall
  Just another version of the custom stack call from Proxy-Function-Calls-For-ETwTI
  ☆35Updated 2 years ago
• timwhitez / Doge-Unhook
  DLL Unhooking
  ☆12Updated 4 years ago
• Cobalt-Strike / callback_examples
  This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions
  ☆33Updated 3 months ago
• ASkyeye / Artillery
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆14Updated last year
• timwhitez / ReturnGate
  ReturnGate, just like HellsGate.
  ☆67Updated 2 years ago
• kyxiaxiang / CrackSleeve4.9
  ☆41Updated last year
• dust-life / Free445-BOF
  ☆24Updated 2 months ago
• timwhitez / StopDefender
  Stop Windows Defender programmatically
  ☆15Updated 3 years ago
• b4nbird / shellcodeLoaders
  ☆26Updated last year
• D0Gshuang / ShellcodeLoader_stager
  ☆19Updated 2 years ago
• apkc / CVE-2024-26229-BOF
  BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel
  ☆26Updated last year
• aleenzz / ADExplorerX
  ☆46Updated last year
• BambiZombie / ThreadlessSpawn
  A Simple PoC
  ☆21Updated last year
• th3k3ymak3r / minbeacon
  A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.
  ☆19Updated 3 years ago
• y11en / BabyBypass
  看起来叫BabyBypass，实际啥都会记一些
  ☆16Updated last year
• CrossC2 / autoRebind
  Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code
  ☆21Updated 2 years ago