BC-SECURITY/Malleable-C2-Profiles external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

BC-SECURITY/Malleable-C2-Profiles

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BC-SECURITY/Malleable-C2-Profiles)

Close

BC-SECURITY / Malleable-C2-ProfilesView on GitHubMore

• External links
• Readme badge

Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.

☆391Jun 11, 2023Updated 2 years ago

Alternatives and similar repositories for Malleable-C2-Profiles

Users that are interested in Malleable-C2-Profiles are comparing it to the libraries listed below

• xx0hcd / Malleable-C2-Profiles

  View on GitHub
  Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.…
  ☆871Oct 28, 2022Updated 3 years ago
• threatexpress / malleable-c2

  View on GitHub
  Cobalt Strike Malleable C2 Design and Reference Guide
  ☆1,751Dec 13, 2023Updated 2 years ago
• RedSiege / C2concealer

  View on GitHub
  C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
  ☆1,097Jun 25, 2024Updated last year
• CCob / BOF.NET

  View on GitHub
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆772Sep 4, 2024Updated last year
• mgeeky / cobalt-arsenal

  View on GitHub
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,097Apr 19, 2023Updated 2 years ago
• rvrsh3ll / BOF_Collection

  View on GitHub
  Various Cobalt Strike BOFs
  ☆744Oct 16, 2022Updated 3 years ago
• Tylous / SourcePoint

  View on GitHub
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,199Apr 16, 2025Updated 10 months ago
• anthemtotheego / InlineExecute-Assembly

  View on GitHub
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆741Jul 22, 2023Updated 2 years ago
• S1ckB0y1337 / Cobalt-Strike-CheatSheet

  View on GitHub
  Some notes and examples for cobalt strike's functionality
  ☆1,128Feb 8, 2022Updated 4 years ago
• trustedsec / CS-Situational-Awareness-BOF

  View on GitHub
  Situational Awareness commands implemented using Beacon Object Files
  ☆1,728Feb 23, 2026Updated 2 weeks ago
• trustedsec / CS-Remote-OPs-BOF

  View on GitHub
  Remote operations commands implemented using Beacon Object Files
  ☆1,120Feb 23, 2026Updated 2 weeks ago
• threatexpress / random_c2_profile

  View on GitHub
  Cobalt Strike random C2 Profile generator
  ☆685Jan 5, 2023Updated 3 years ago
• WKL-Sec / Malleable-CS-Profiles

  View on GitHub
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆510May 19, 2025Updated 9 months ago
• boku7 / BokuLoader

  View on GitHub
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,400Nov 22, 2023Updated 2 years ago
• kyleavery / AceLdr

  View on GitHub
  Cobalt Strike UDRL for memory scanner evasion.
  ☆1,006Jun 4, 2024Updated last year
• RCStep / CSSG

  View on GitHub
  Cobalt Strike Shellcode Generator
  ☆669Jan 8, 2025Updated last year
• CCob / SharpBlock

  View on GitHub
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,163Mar 31, 2021Updated 4 years ago
• REDMED-X / OperatorsKit

  View on GitHub
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆677Aug 15, 2025Updated 6 months ago
• 0xthirteen / MoveKit

  View on GitHub
  Cobalt Strike kit for Lateral Movement
  ☆678Feb 21, 2020Updated 6 years ago
• N7WEra / BofAllTheThings

  View on GitHub
  Creating a repository with all public Beacon Object Files (BoFs)
  ☆601Mar 2, 2026Updated last week
• ajpc500 / BOFs

  View on GitHub
  Collection of Beacon Object Files
  ☆633Nov 1, 2022Updated 3 years ago
• outflanknl / C2-Tool-Collection

  View on GitHub
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,369Oct 27, 2023Updated 2 years ago
• bluscreenofjeff / AggressorScripts

  View on GitHub
  Aggressor scripts for use with Cobalt Strike 3.0+
  ☆887Sep 9, 2022Updated 3 years ago
• mgeeky / ElusiveMice

  View on GitHub
  Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
  ☆482Jul 12, 2023Updated 2 years ago
• Cobalt-Strike / community_kit

  View on GitHub
  Cobalt Strike is a post-exploitation framework designed to be extended and customized by the user community. Several excellent tools and …
  ☆404Updated this week
• RedCursorSecurityConsulting / PPLKiller

  View on GitHub
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆989Dec 4, 2022Updated 3 years ago
• boku7 / azureOutlookC2

  View on GitHub
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆502May 16, 2023Updated 2 years ago
• GhostPack / ForgeCert

  View on GitHub
  "Golden" certificates
  ☆708Aug 17, 2024Updated last year
• cube0x0 / SharpSystemTriggers

  View on GitHub
  Collection of remote authentication triggers in C#
  ☆524May 15, 2024Updated last year
• Mr-Un1k0d3r / SCShell

  View on GitHub
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,607Jul 10, 2023Updated 2 years ago
• FuzzySecurity / StandIn

  View on GitHub
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆839Dec 2, 2023Updated 2 years ago
• rsmudge / Malleable-C2-Profiles

  View on GitHub
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆1,584May 18, 2021Updated 4 years ago
• GhostManager / cobalt_sync

  View on GitHub
  Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+
  ☆36Dec 1, 2025Updated 3 months ago
• boku7 / spawn

  View on GitHub
  Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
  ☆469Mar 8, 2023Updated 3 years ago
• RythmStick / AMSITrigger

  View on GitHub
  The Hunt for Malicious Strings
  ☆1,365May 13, 2025Updated 9 months ago
• 0xthirteen / SharpStay

  View on GitHub
  .NET project for installing Persistence
  ☆498Jun 26, 2024Updated last year
• mandiant / SharPersist

  View on GitHub
  ☆1,531Aug 11, 2023Updated 2 years ago
• h4wkst3r / InvisibilityCloak

  View on GitHub
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆603Jul 22, 2022Updated 3 years ago
• praetorian-inc / PortBender

  View on GitHub
  TCP Port Redirection Utility
  ☆762Jan 31, 2023Updated 3 years ago