Cobalt-Strike / community_kitLinks
Cobalt Strike is a post-exploitation framework designed to be extended and customized by the user community. Several excellent tools and scripts have been written and published, but they can be challenging to locate. Community Kit is a central repository of extensions written by the user community to extend the capabilities of Cobalt Strike. The…
☆387Updated this week
Alternatives and similar repositories for community_kit
Users that are interested in community_kit are comparing it to the libraries listed below
Sorting:
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆386Updated 2 years ago
- Useful C2 techniques and cheat sheets learned from engagements☆562Updated 2 months ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,040Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,318Updated 2 years ago
- ☆712Updated last year
- ☆245Updated 5 years ago
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆271Updated 2 years ago
- This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)☆285Updated last year
- PowerShell Script Obfuscator☆580Updated 2 years ago
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆988Updated 3 years ago
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆426Updated last year
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆587Updated 3 years ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,096Updated 2 years ago
- Simple & Powerful PowerShell Script Obfuscator��☆588Updated 6 months ago
- Python version of the C# tool for "Shadow Credentials" attacks☆820Updated 2 months ago
- A collection of Windows print spooler exploits containerized with other utilities for practical exploitation.☆553Updated 4 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆347Updated 2 years ago
- Some notes and examples for cobalt strike's functionality☆1,118Updated 3 years ago
- An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.☆281Updated 3 years ago
- "Golden" certificates☆704Updated last year
- ☆471Updated last year
- GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsof…☆632Updated 8 months ago
- ☆1,063Updated last week
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…☆473Updated 3 years ago
- XLL Phishing Tradecraft☆431Updated 3 years ago
- Materials for the workshop "Red Team Ops: Havoc 101"☆388Updated last year
- a tool to help operate in EDRs' blind spots☆766Updated 11 months ago
- Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…☆497Updated 2 years ago
- Dump NTDS with golden certificates and UnPAC the hash☆643Updated last year
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.☆1,179Updated 7 months ago