An aggressor script for Cobalt Strike to query Windows' GetLastError messages
☆18Sep 25, 2022Updated 3 years ago
Alternatives and similar repositories for cs-get-last-error
Users that are interested in cs-get-last-error are comparing it to the libraries listed below
Sorting:
- Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.☆312Jul 8, 2022Updated 3 years ago
- ☆30Nov 7, 2022Updated 3 years ago
- Aggressor script add-in for CobaltStrike to track file uploads☆48Nov 7, 2022Updated 3 years ago
- Strstr with user-supplied needle and filename as a BOF.☆32Sep 27, 2021Updated 4 years ago
- Cobalt Strike Get clipboard plugin☆15Aug 11, 2023Updated 2 years ago
- ☆94May 14, 2022Updated 3 years ago
- ☆142May 4, 2022Updated 3 years ago
- Beacon Object File to locate and suspend the threads hosting the Event Log service☆29Jun 17, 2022Updated 3 years ago
- Beacon Object File Loader☆293Dec 3, 2023Updated 2 years ago
- CVE-2022-22947_POC_EXP☆13Mar 17, 2022Updated 3 years ago
- 异或shellcode和ppid欺骗免杀☆14Mar 8, 2022Updated 3 years ago
- 一个红队知识仓库☆15Jun 13, 2022Updated 3 years ago
- My CobaltStrike BOFS☆167Jul 23, 2022Updated 3 years ago
- Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.☆282Feb 8, 2024Updated 2 years ago
- Grab unsaved Notepad contents with a Beacon Object File☆55Jun 19, 2022Updated 3 years ago
- 一个集和多线程 批量验证 poc验证 存活测试 备份文件探测 后台探测 渗透测试框架。☆18May 8, 2022Updated 3 years ago
- Parses Cobalt Strike malleable C2 profiles.☆61Updated this week
- This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions☆38Mar 17, 2025Updated 11 months ago
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆102Jan 7, 2022Updated 4 years ago
- 个人翻译/总结渗透测试思维导图☆29Jun 15, 2022Updated 3 years ago
- A PoC project for embedding shellcode to Hint/Name Table☆113May 16, 2022Updated 3 years ago
- ☆52Apr 1, 2022Updated 3 years ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆86Mar 19, 2023Updated 2 years ago
- A BOF to automate common persistence tasks for red teamers☆295Mar 7, 2023Updated 2 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆87Mar 22, 2023Updated 2 years ago
- A SOCKS proxy for Citrix.☆96Dec 8, 2022Updated 3 years ago
- ☆88Jul 31, 2022Updated 3 years ago
- My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the interne…☆21May 20, 2024Updated last year
- CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.☆25May 23, 2022Updated 3 years ago
- A simple BOF that frees UDRLs☆122May 29, 2022Updated 3 years ago
- Cobalt Strike Beacon Object Files☆167May 2, 2022Updated 3 years ago
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆342Jun 6, 2022Updated 3 years ago
- ☆47Feb 11, 2023Updated 3 years ago
- ReturnGate, just like HellsGate.☆68Aug 10, 2022Updated 3 years ago
- 利用NTLM Hash读取Exchange邮件☆58May 13, 2023Updated 2 years ago
- Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process☆47Jun 15, 2022Updated 3 years ago
- Beacon Object File implementation of Event Viewer deserialization UAC bypass☆133May 6, 2022Updated 3 years ago
- ☆129Jun 28, 2023Updated 2 years ago
- Inject .NET assemblies into an existing process☆508Jan 19, 2022Updated 4 years ago