Alternatives and similar repositories for rcat

Users that are interested in rcat are comparing it to the libraries listed below

• xct / winssh
  ☆61Updated 2 years ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆140Updated last year
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆127Updated 4 years ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆147Updated 2 weeks ago
• amauricio / junkshell
  ☆71Updated 7 months ago
• synacktiv / CVE-2024-43468
  ☆92Updated 9 months ago
• xct / SeDebugAbuse
  Get SYSTEM via SeDebugPrivilege
  ☆23Updated 3 years ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆145Updated last year
• Karmaz95 / evasion
  AV Evasion Techniques
  ☆79Updated 3 years ago
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆125Updated 2 weeks ago
• m3f157O / combine_harvester
  Rust in-memory dumper
  ☆108Updated 2 years ago
• m8sec / CVE-2021-34527
  PrintNightmare (CVE-2021-34527) PoC Exploit
  ☆116Updated 2 years ago
• powerseb / PowerExtract
  ☆119Updated 7 months ago
• synacktiv / Prox-Ez
  ☆97Updated 8 months ago
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆100Updated 2 weeks ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆165Updated last year
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆125Updated 3 years ago
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆85Updated 3 years ago
• Sh4N4C1 / sh4loader
  ☆29Updated last year
• CCob / gssapi-abuse
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆175Updated 2 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆146Updated last year
• Sh3lldon / RemoteApp
  I have created these custom servers for preparing EXP-301 course (aka WUMED) exam and hope it will help to take OSED certification. Feel …
  ☆51Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 3 years ago
• xct / vulnbins
  vulnerable windows binaries for exploitation practice
  ☆45Updated 3 years ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆107Updated 2 years ago
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆74Updated 3 years ago
• 3lp4tr0n / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆166Updated 4 months ago
• csandker / pxethiefy
  ☆77Updated 9 months ago
• chebuya / Havoc-C2-SSRF-poc
  CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit
  ☆74Updated last year
• lefayjey / SharpSQLPwn
  C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
  ☆112Updated 3 years ago