Alternatives and similar repositories for rcat

Users that are interested in rcat are comparing it to the libraries listed below

• xct / winssh
  ☆62Updated 2 years ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆140Updated 2 years ago
• amauricio / junkshell
  ☆73Updated 8 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆154Updated last month
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆130Updated 4 years ago
• synacktiv / Prox-Ez
  ☆99Updated 10 months ago
• synacktiv / CVE-2024-43468
  ☆94Updated 10 months ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆146Updated last year
• Karmaz95 / evasion
  AV Evasion Techniques
  ☆82Updated 3 years ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.
  ☆174Updated 9 months ago
• san6051 / TeamsCh-Shell
  ☆37Updated 8 months ago
• CCob / gssapi-abuse
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆182Updated 3 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆186Updated 7 months ago
• 3lp4tr0n / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆175Updated last month
• xct / SeDebugAbuse
  Get SYSTEM via SeDebugPrivilege
  ☆23Updated 3 years ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆169Updated last year
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆128Updated 2 weeks ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆272Updated last month
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆102Updated last month
• Sh4N4C1 / sh4loader
  ☆29Updated last year
• Maldev-Academy / ElectronVulnScanner
  Automatically scan the file system to identify Electron applications vulnerable to ASAR tampering.
  ☆124Updated 2 weeks ago
• csandker / pxethiefy
  ☆79Updated 10 months ago
• powerseb / PowerExtract
  ☆119Updated 8 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆144Updated last year
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆85Updated 3 years ago
• yanncam / ShuckNT
  ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication …
  ☆75Updated last year
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆133Updated 3 years ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆132Updated 10 months ago
• ommadawn46 / win-x86-shellcoder
  A tool for developing bad character-free shellcode to bypass DEP with WriteProcessMemory (32-bit only)
  ☆72Updated 3 years ago
• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆146Updated 11 months ago