Alternatives and similar repositories for Malleable-C2-Profiles

Users that are interested in Malleable-C2-Profiles are comparing it to the libraries listed below

• N7WEra / BofAllTheThings
  Creating a repository with all public Beacon Object Files (BoFs)
  ☆565Updated 2 years ago
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆427Updated 2 years ago
• trustedsec / CS-Remote-OPs-BOF
  ☆1,110Updated 3 weeks ago
• REDMED-X / OperatorsKit
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆669Updated 5 months ago
• wsummerhill / C2_RedTeam_CheatSheets
  Useful C2 techniques and cheat sheets learned from engagements
  ☆575Updated 4 months ago
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆431Updated 3 years ago
• Inf0secRabbit / BadAssMacros
  BadAssMacros - C# based automated Malicous Macro Generator.
  ☆437Updated 4 years ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆500Updated 2 years ago
• anthemtotheego / InlineExecute-Assembly
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆737Updated 2 years ago
• Cobalt-Strike / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆252Updated 2 months ago
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆731Updated 3 years ago
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆767Updated last year
• Tylous / SourcePoint
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,191Updated 9 months ago
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆505Updated 8 months ago
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆431Updated last year
• paranoidninja / Brute-Ratel-C4-Community-Kit
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆290Updated last year
• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,364Updated 2 years ago
• zblurx / certsync
  Dump NTDS with golden certificates and UnPAC the hash
  ☆646Updated last year
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆594Updated 3 years ago
• r4wd3r / Suborner
  ☆473Updated last year
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆620Updated last year
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆393Updated last year
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆598Updated 3 years ago
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆587Updated last year
• cube0x0 / SharpSystemTriggers
  Collection of remote authentication triggers in C#
  ☆524Updated last year
• icyguider / Nimcrypt2
  .NET, PE, & Raw Shellcode Packer/Loader Written in Nim
  ☆812Updated 3 years ago
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆421Updated 3 years ago
• mgeeky / RedWarden
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆994Updated 3 years ago
• improsec / SharpEventPersist
  Persistence by writing/reading shellcode from Event Log
  ☆378Updated 3 years ago
• ConsciousHacker / WFH
  ☆433Updated 3 years ago