Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
☆46Aug 16, 2024Updated last year
Alternatives and similar repositories for OffSecOps-Arsenal
Users that are interested in OffSecOps-Arsenal are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Parser and reconciliation tooling for large Active Directory environments.☆33Feb 18, 2025Updated last year
- A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.☆15Apr 4, 2023Updated 3 years ago
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆31Feb 7, 2025Updated last year
- ☆36Jan 23, 2025Updated last year
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆196Feb 6, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆19Mar 19, 2025Updated last year
- A PowerShell console in C/C++ with all the security features disabled☆391Oct 14, 2025Updated 8 months ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆19Apr 24, 2023Updated 3 years ago
- AADInternals-Endpoints PowerShell module☆36Jul 2, 2025Updated last year
- Cobalt Strike 的 CVE-2024-35250 的 BOF。(请给我加个星,谢谢。)☆13Oct 21, 2024Updated last year
- ☆11Jun 26, 2024Updated 2 years ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆288Apr 6, 2025Updated last year
- A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …☆102Sep 5, 2024Updated last year
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆400Jul 23, 2025Updated 11 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.☆16Jun 16, 2022Updated 4 years ago
- ☆248May 5, 2024Updated 2 years ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆189Jan 17, 2026Updated 5 months ago
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆157Jan 21, 2023Updated 3 years ago
- ☆149Nov 6, 2025Updated 7 months ago
- Robust Cobalt Strike shellcode loader with multiple advanced evasion features☆205Apr 21, 2025Updated last year
- rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.☆17Jan 6, 2024Updated 2 years ago
- 免杀木马样本☆107Oct 11, 2025Updated 8 months ago
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆205Aug 25, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A lightweight redirector for Google Cloud Run, enabling domain fronting via Google-owned infrastructure.☆145Nov 12, 2025Updated 7 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆162Mar 26, 2025Updated last year
- Detect Remote Local Credentials Dumping using a Shadow Snapshot☆32Jan 27, 2025Updated last year
- Lateral Movement Using DCOM and DLL Hijacking☆327Jun 18, 2023Updated 3 years ago
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆22Feb 20, 2025Updated last year
- Python implementation of GhostPack's Seatbelt situational awareness tool☆274Nov 12, 2024Updated last year
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆92Jan 8, 2025Updated last year
- Extension functionality for the NightHawk operator client☆27Nov 3, 2023Updated 2 years ago
- Cs-Sleep-Mask-Fiber☆18May 16, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- C2 Automation using Linode☆85Sep 24, 2022Updated 3 years ago
- ☆26Sep 29, 2018Updated 7 years ago
- A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …☆20Mar 6, 2025Updated last year
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆438Sep 29, 2025Updated 9 months ago
- A simple rpc2socks alternative in pure Go.☆31Jul 8, 2024Updated last year
- Rust template/library for implementing your own COFF loader☆71Jan 27, 2025Updated last year
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆412Jan 11, 2026Updated 5 months ago