GhostManager/cobalt_sync external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

GhostManager/cobalt_sync

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/GhostManager/cobalt_sync)

Close

GhostManager / cobalt_syncView on GitHubMore

• External links
• Readme badge

Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+

☆35Dec 1, 2025Updated 2 months ago

Alternatives and similar repositories for cobalt_sync

Users that are interested in cobalt_sync are comparing it to the libraries listed below

• EspressoCake / Needle_Sift_BOF

  View on GitHub
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Sep 27, 2021Updated 4 years ago
• trainr3kt / Readfile_BoF

  View on GitHub
  ☆22Jun 21, 2022Updated 3 years ago
• ceramicskate0 / BOF-Builder

  View on GitHub
  C# .Net 5.0 project to build BOF (Beacon Object Files) in mass
  ☆25Jul 25, 2023Updated 2 years ago
• guervild / InlineZipper

  View on GitHub
  ☆25Feb 9, 2022Updated 4 years ago
• GhostManager / mythic_sync

  View on GitHub
  Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+
  ☆22Jul 31, 2025Updated 7 months ago
• martabyte / Red-Team-Ops

  View on GitHub
  Notes about the YouTube playlist: Red Team Operations with Cobalt Strike (2019)
  ☆20Feb 16, 2021Updated 5 years ago
• xenoscr / offsecops-shared-library

  View on GitHub
  A collection of scripts used to support an OffSecOps pipeline.
  ☆15Jan 31, 2021Updated 5 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 2 years ago
• xx0hcd / Alt-Beacon-Payload

  View on GitHub
  Beacon payload using AV bypass method from https://github.com/fullmetalcache/CsharpMMNiceness and shellcode generated from https://github…
  ☆20Feb 9, 2021Updated 5 years ago
• Hagrid29 / BOF-CredUI

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆23Nov 23, 2022Updated 3 years ago
• warhorse / docker-cobaltstrike

  View on GitHub
  A Cobaltstrike container, built for Warhorse
  ☆40Aug 8, 2024Updated last year
• curi0usJack / ansible-redelk

  View on GitHub
  Ansible playbooks for instrumenting a Red Team environment with RedElk
  ☆52Oct 6, 2020Updated 5 years ago
• nick-frischkorn / SuspendEventLogBOF

  View on GitHub
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆29Jun 17, 2022Updated 3 years ago
• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆94Mar 8, 2023Updated 2 years ago
• rasta-mouse / ExternalC2.NET

  View on GitHub
  .NET implementation of Cobalt Strike's External C2 Spec
  ☆89Nov 12, 2021Updated 4 years ago
• trainr3kt / MemReader_BoF

  View on GitHub
  ☆46Dec 5, 2023Updated 2 years ago
• Flangvik / CobaltBus

  View on GitHub
  Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
  ☆247Feb 23, 2022Updated 4 years ago
• farfella / in-memory-cpython

  View on GitHub
  An In-memory Embedding of CPython
  ☆31May 24, 2021Updated 4 years ago
• RiccardoAncarani / BOFs

  View on GitHub
  Collection of Beacon Object Files (BOFs) for shells and lols
  ☆121Sep 14, 2021Updated 4 years ago
• HuskyHacks / RustyTokenManipulation

  View on GitHub
  just manipulatin these here tokens yes sir nothing weird
  ☆22Apr 18, 2022Updated 3 years ago
• curtbraz / PhishingFromMS365API

  View on GitHub
  A Couple of Python Scripts Leveraging MS365's GraphAPI to Send Custom Calendar Events / Emails from Cheap O365 Accounts
  ☆18Apr 19, 2024Updated last year
• moscowchill / LSTAR-EN

  View on GitHub
  LSTAR - CobaltStrike Translated to EN
  ☆22Jun 15, 2023Updated 2 years ago
• antroguy / LocklessBof

  View on GitHub
  Lockless BOF
  ☆79May 2, 2025Updated 9 months ago
• S4ntiagoP / freeBokuLoader

  View on GitHub
  A simple BOF that frees UDRLs
  ☆122May 29, 2022Updated 3 years ago
• CCob / PwnyForm

  View on GitHub
  ☆48Nov 18, 2020Updated 5 years ago
• inzlain / sameuser

  View on GitHub
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Jul 13, 2022Updated 3 years ago
• mgeeky / CustomXMLPart

  View on GitHub
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆39Aug 8, 2022Updated 3 years ago
• EspressoCake / BOF_Development_Docker

  View on GitHub
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆50Jul 10, 2023Updated 2 years ago
• guervild / BOFs

  View on GitHub
  Cobalt Strike Beacon Object Files
  ☆167May 2, 2022Updated 3 years ago
• mr-r3bot / bof-modules

  View on GitHub
  BOF for C2 framework
  ☆44Nov 9, 2024Updated last year
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆133May 6, 2022Updated 3 years ago
• soufianetahiri / CitrixSecureAccessAuthCookieDump

  View on GitHub
  Dump Citrix Secure Access auth cookie from the process memory
  ☆76Jun 24, 2022Updated 3 years ago
• EspressoCake / DLL-Exports-Extraction-BOF

  View on GitHub
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆90Nov 5, 2021Updated 4 years ago
• paranoidninja / PI-Tracker

  View on GitHub
  A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback …
  ☆14Oct 21, 2024Updated last year
• ricardojoserf / BOF_Files

  View on GitHub
  Repository to gather the BOF files I will be developing
  ☆11Oct 1, 2024Updated last year
• secgroundzero / hashslack

  View on GitHub
  Small utility script to notify via Slack about Hashcat's progress during a password cracking session
  ☆10Mar 10, 2019Updated 6 years ago
• boku7 / halosgate-ps

  View on GitHub
  Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes
  ☆108Mar 8, 2023Updated 2 years ago
• netero1010 / TrustedPath-UACBypass-BOF

  View on GitHub
  Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.…
  ☆146Aug 16, 2021Updated 4 years ago
• cube0x0 / BofRoast

  View on GitHub
  Beacon Object Files for roasting Active Directory
  ☆235Feb 21, 2022Updated 4 years ago