Cobalt-Strike / community_kit
Cobalt Strike is a post-exploitation framework designed to be extended and customized by the user community. Several excellent tools and scripts have been written and published, but they can be challenging to locate. Community Kit is a central repository of extensions written by the user community to extend the capabilities of Cobalt Strike. The…
☆328Updated this week
Related projects ⓘ
Alternatives and complementary repositories for community_kit
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆338Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,143Updated last year
- Useful C2 techniques and cheatsheets learned from engagements☆428Updated last month
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆863Updated 5 months ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,039Updated last year
- Python version of the C# tool for "Shadow Credentials" attacks☆611Updated this week
- Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …☆814Updated last week
- Another Windows Local Privilege Escalation from Service Account to System☆806Updated 2 years ago
- PowerShell Script Obfuscator☆494Updated last year
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆376Updated 2 months ago
- Dump NTDS with golden certificates and UnPAC the hash☆623Updated 8 months ago
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆241Updated last year
- ☆862Updated this week
- Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…☆462Updated last year
- ☆671Updated 8 months ago
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆928Updated 2 years ago
- Some notes and examples for cobalt strike's functionality☆988Updated 2 years ago
- This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)☆259Updated 3 months ago
- Simple & Powerful PowerShell Script Obfuscator☆454Updated last year
- ScareCrow - Payload creation framework designed around EDR bypass.☆260Updated last year
- VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit☆424Updated last year
- MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.☆255Updated last year
- ☆171Updated 4 years ago
- The Hunt for Malicious Strings☆1,098Updated 2 years ago
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆685Updated last year
- ☆735Updated 2 years ago
- ICMP Reverse Shell written in Python 3 and with Scapy (backdoor/rev shell)☆326Updated 3 months ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆490Updated 2 years ago
- Materials for the workshop "Red Team Ops: Havoc 101"☆352Updated last month