CodeXTF2 / cobaltstrike-headless
Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
☆147Updated 2 years ago
Alternatives and similar repositories for cobaltstrike-headless:
Users that are interested in cobaltstrike-headless are comparing it to the libraries listed below
- ☆88Updated 2 years ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆178Updated 2 years ago
- AV/EDR evasion via direct system calls.☆107Updated last year
- Bypass Detection By Randomising ROR13 API Hashes☆136Updated 3 years ago
- Coerce Windows machines auth via MS-EVEN☆158Updated last year
- POC tools for exploring SMB over QUIC protocol☆121Updated 2 years ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆152Updated last year
- ☆96Updated last year
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆80Updated 3 years ago
- Beacon Object File implementation of Event Viewer deserialization UAC bypass☆132Updated 2 years ago
- To audit the security of read-only domain controllers☆114Updated last year
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆127Updated last year
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆108Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs☆178Updated 3 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆200Updated 3 years ago
- Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.…☆133Updated 3 years ago
- C# havoc implant☆100Updated 2 years ago
- ☆139Updated 2 years ago
- DLL Hijack Search Order Enumeration BOF☆147Updated 3 years ago
- Repository contains psexec, which will help to exploit the forgotten pipe☆168Updated 4 months ago
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆205Updated last year
- ☆79Updated last year
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆102Updated 2 years ago
- ☆125Updated last year
- ☆140Updated last year
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆144Updated 2 years ago
- C# Port of LdapRelayScan☆80Updated 3 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆226Updated 3 years ago
- Golang reverse proxy with CobaltStrike malleable profile validation.☆108Updated 2 years ago