Alternatives and similar repositories for Malleable-C2-Profiles

Users that are interested in Malleable-C2-Profiles are comparing it to the libraries listed below

• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆417Updated 2 years ago
• N7WEra / BofAllTheThings
  Creating a repository with all public Beacon Object Files (BoFs)
  ☆523Updated 2 years ago
• Cobalt-Strike / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆229Updated last month
• trustedsec / CS-Remote-OPs-BOF
  ☆1,030Updated 6 months ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆488Updated 2 years ago
• Inf0secRabbit / BadAssMacros
  BadAssMacros - C# based automated Malicous Macro Generator.
  ☆428Updated 3 years ago
• wsummerhill / C2_RedTeam_CheatSheets
  Useful C2 techniques and cheat sheets learned from engagements
  ☆548Updated last week
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆688Updated 2 years ago
• anthemtotheego / InlineExecute-Assembly
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆698Updated 2 years ago
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆746Updated last year
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆419Updated last year
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆483Updated 3 months ago
• REDMED-X / OperatorsKit
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆643Updated last month
• paranoidninja / Brute-Ratel-C4-Community-Kit
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆283Updated last year
• zblurx / certsync
  Dump NTDS with golden certificates and UnPAC the hash
  ☆635Updated last year
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆386Updated 11 months ago
• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,289Updated last year
• r4wd3r / Suborner
  ☆470Updated 9 months ago
• rasta-mouse / AmsiScanBufferBypass
  Bypass AMSI by patching AmsiScanBuffer
  ☆272Updated 4 years ago
• improsec / SharpEventPersist
  Persistence by writing/reading shellcode from Event Log
  ☆378Updated 3 years ago
• mgeeky / RedWarden
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆983Updated 2 years ago
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆593Updated 2 years ago
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆431Updated last year
• Wh04m1001 / DFSCoerce
  ☆800Updated 3 years ago
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆474Updated 2 years ago
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆369Updated 3 years ago
• ConsciousHacker / WFH
  ☆419Updated 3 years ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆570Updated 3 years ago
• RedSiege / GraphStrike
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆608Updated last year