Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
☆3,916Jun 4, 2026Updated last week
Alternatives and similar repositories for unicorn
Users that are interested in unicorn are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Empire is a PowerShell and Python post-exploitation agent.☆7,838Jan 19, 2020Updated 6 years ago
- The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.☆5,525Sep 22, 2024Updated last year
- A swiss army knife for pentesting networks☆9,136Dec 6, 2023Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆13,006Aug 17, 2020Updated 5 years ago
- An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR☆2,340Dec 6, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- PowerShell Runspace Post Exploitation Toolkit☆1,549Aug 2, 2019Updated 6 years ago
- Payload Generation Framework☆1,984Aug 21, 2024Updated last year
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,942Apr 25, 2024Updated 2 years ago
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,979Nov 19, 2025Updated 6 months ago
- Veil 3.1.X (Check version info in Veil at runtime)☆4,216Oct 9, 2023Updated 2 years ago
- HTA encryption tool for RedTeams☆1,427Nov 9, 2022Updated 3 years ago
- PowerShell Obfuscator☆4,265Aug 10, 2023Updated 2 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,488Oct 1, 2025Updated 8 months ago
- TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.☆1,328Jan 31, 2022Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,123Feb 10, 2021Updated 5 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆4,692Jul 18, 2024Updated last year
- Six Degrees of Domain Admin☆10,550Mar 2, 2026Updated 3 months ago
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,238Aug 7, 2025Updated 10 months ago
- A tool to abuse Exchange services☆2,303Jun 10, 2024Updated 2 years ago
- MeterSSH is a way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communicati…☆528Apr 13, 2017Updated 9 years ago
- A PowerShell based utility for the creation of malicious Office macro documents.☆1,108Nov 3, 2017Updated 8 years ago
- My musings with PowerShell☆2,715Nov 19, 2021Updated 4 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆1,016Jul 3, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C☆8,979Mar 22, 2024Updated 2 years ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,871Jun 15, 2020Updated 5 years ago
- Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Dir…☆1,618Jan 23, 2024Updated 2 years ago
- Run PowerShell command without invoking powershell.exe☆1,548Apr 9, 2026Updated 2 months ago
- Run PowerShell with rundll32. Bypass software restrictions.☆1,825Mar 17, 2021Updated 5 years ago
- RedSnarf is a pen-testing / red-teaming tool for Windows environments☆1,214Sep 14, 2020Updated 5 years ago
- Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensi…☆4,602Jan 10, 2025Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆15,793Jun 3, 2026Updated last week
- AntiVirus Evasion Tool☆1,749Apr 23, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- SharpSploit is a .NET post-exploitation library written in C#☆1,878Aug 12, 2021Updated 4 years ago
- A tool for automating cracking methodologies through Hashcat from the TrustedSec team.☆1,834May 28, 2026Updated 2 weeks ago
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,206May 11, 2023Updated 3 years ago
- Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources☆1,528Jun 30, 2023Updated 2 years ago
- Trying to tame the three-headed dog.☆5,033May 21, 2026Updated 3 weeks ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆6,476May 16, 2026Updated 3 weeks ago
- PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server☆2,722Dec 12, 2024Updated last year