Cobalt-Strike/aggressor_script_examples external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Cobalt-Strike/aggressor_script_examples

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Cobalt-Strike/aggressor_script_examples)

Close

Cobalt-Strike / aggressor_script_examplesView on GitHubMore

• External links
• Readme badge

This repository contains tips, tricks, and examples of aggressor script functions. The intent is to share bite size examples that can be used in other scripts.

☆16Aug 12, 2025Updated 7 months ago

Alternatives and similar repositories for aggressor_script_examples

Users that are interested in aggressor_script_examples are comparing it to the libraries listed below

• iss4cf0ng / IronPE

  View on GitHub
  IronPE is a Windows PE manual loader written in Rust for both x86 and x64 PE files.
  ☆91Mar 10, 2026Updated last week
• SpecterOps / SCOMHound

  View on GitHub
  ☆37Dec 4, 2025Updated 3 months ago
• Cobalt-Strike / ElevateKit

  View on GitHub
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆126Jun 22, 2020Updated 5 years ago
• casp3r0x0 / CallWindowProcW-ShellcodeLoader

  View on GitHub
  ☆19Sep 1, 2025Updated 6 months ago
• boku7 / DarkWidow

  View on GitHub
  Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
  ☆15Feb 13, 2024Updated 2 years ago
• mrd0x / NodeJSTools_LOLBIN

  View on GitHub
  ☆13Nov 24, 2021Updated 4 years ago
• Cobalt-Strike / unhook-bof

  View on GitHub
  Remove API hooks from a Beacon process.
  ☆76Mar 13, 2022Updated 4 years ago
• p4p1 / havoc-reporter

  View on GitHub
  A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.
  ☆14Oct 31, 2023Updated 2 years ago
• Cobalt-Strike / Malleable-C2-Profiles

  View on GitHub
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆255Nov 24, 2025Updated 3 months ago
• airbus-cert / kerlab

  View on GitHub
  kerberos in rust for fun and profit
  ☆66Mar 13, 2026Updated last week
• chessredoffsec / south-america-cve-hall

  View on GitHub
  ☆13Sep 23, 2025Updated 6 months ago
• koa73 / p2pgate

  View on GitHub
  ☆12Sep 1, 2022Updated 3 years ago
• vvswift / HVNC-windows-remote-toolkit

  View on GitHub
  Remote administration toolkit for windows, based on Hidden VNC: file manager, keystroke logger, powershell
  ☆38Nov 23, 2025Updated 3 months ago
• gbyrka / git-static-analyzer

  View on GitHub
  A static tool to analyze the history of your git repository
  ☆11Nov 9, 2023Updated 2 years ago
• garrettfoster13 / CVE-2025-59501

  View on GitHub
  CVE-2025-59501 POC code
  ☆25Nov 20, 2025Updated 4 months ago
• initstring / RTAP

  View on GitHub
  Red Team Assessment Platform - reporting, visualizations, and analytics for cybersecurity red teams
  ☆34Jan 27, 2026Updated last month
• 0xRedpoll / ludus_cobaltstrike_teamserver

  View on GitHub
  Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers
  ☆18Mar 19, 2025Updated last year
• Tw1sm / list-wam-accounts

  View on GitHub
  List web account manager (WAM) accounts added to the current profile
  ☆24Dec 11, 2025Updated 3 months ago
• mubix / Find-WSUS

  View on GitHub
  Helps defenders find their WSUS configurations in the wake of CVE-2025-59287
  ☆46Oct 28, 2025Updated 4 months ago
• TierZeroSecurity / killerPID-BOF

  View on GitHub
  BOF to terminate a process via PID as argument
  ☆28Sep 7, 2025Updated 6 months ago
• p0dalirius / bhopengraph

  View on GitHub
  A python library to create BloodHound OpenGraphs
  ☆56Feb 4, 2026Updated last month
• octoml / macho-dyld

  View on GitHub
  Custom dyld version inherited from original Apple dyld implementation
  ☆23Apr 27, 2024Updated last year
• Cobalt-Strike / callback_examples

  View on GitHub
  This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions
  ☆38Mar 17, 2025Updated last year
• curi0usJack / Ludus-MDE-MDI-Roles

  View on GitHub
  Ludus roles to deploy ASR rules and MDI auditing settings
  ☆24Aug 5, 2025Updated 7 months ago
• Fudgedotdotdot / nimpersonate

  View on GitHub
  Impersonate Windows tokens in Nim
  ☆23Aug 4, 2025Updated 7 months ago
• 0xRedpoll / ludus_mythic_teamserver

  View on GitHub
  Ludus role for deploying a Mythic Teamserver onto Linux servers
  ☆23Mar 16, 2025Updated last year
• lablab-ai / crewAI-boilerplate

  View on GitHub
  This repository contains a ready-to-use boilerplate for quickly setting up and working with crewai. It provides essential configurations …
  ☆11Sep 11, 2024Updated last year
• AyushAmbastha / The-Security-Interview-Guide

  View on GitHub
  The aim of this repository is to help students prepare for jobs in the Security Domain by consolidating useful resources and summarizing …
  ☆28Feb 6, 2025Updated last year
• mkmk435 / Zone

  View on GitHub
  ☆17Sep 17, 2025Updated 6 months ago
• jitinchekka / github-repo-analyzer

  View on GitHub
  ☆17Jul 25, 2023Updated 2 years ago
• recastrodiaz / formGrabber

  View on GitHub
  ☆25Apr 30, 2012Updated 13 years ago
• kfallahi / NTLMPasswordChanger

  View on GitHub
  PowerShell tool that shows how to read and write NTLM OWF values via samlib.dll.
  ☆72Oct 22, 2025Updated 5 months ago
• SpecterOps / ConfigManBearPig

  View on GitHub
  PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph
  ☆78Mar 13, 2026Updated last week
• BishopFox / sliver-wasm-stager

  View on GitHub
  A stager and implant that executes remote Web Assembly
  ☆60Feb 4, 2026Updated last month
• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆31Dec 20, 2025Updated 3 months ago
• p4p1 / havoc-privkit

  View on GitHub
  a port of privkit bof for havoc
  ☆23Dec 8, 2023Updated 2 years ago
• ibaiC / SafeHarbor-BOF

  View on GitHub
  Safe Harbor is a BOF that streamlines process reconnaissance for red team operations by identifying trusted, low-noise targets to maintai…
  ☆78Oct 27, 2025Updated 4 months ago
• jimilinuxguy / lrs-pager-systems-bruteforce

  View on GitHub
  Long Range Pager Systems pagers and coasters URH and YS1 (yardstick one / cc11xx) information and brute force tool
  ☆52Nov 7, 2022Updated 3 years ago
• ldpreload / werkernel

  View on GitHub
  Windows LPE Nday
  ☆32Apr 26, 2024Updated last year