Alternatives and similar repositories for CS_Uploads_Tracker:

Users that are interested in CS_Uploads_Tracker are comparing it to the libraries listed below

• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆85Updated 2 years ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆94Updated last year
• c3r3br4t3 / ShadowRDP
  ☆69Updated last year
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated last year
• OG-Sadpanda / SharpSword
  Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly
  ☆117Updated 6 months ago
• Henkru / cs-get-last-error
  An aggressor script for Cobalt Strike to query Windows' GetLastError messages
  ☆18Updated 2 years ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆21Updated 2 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆81Updated 3 years ago
• EspressoCake / DynamicTabRename
  CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.
  ☆23Updated 2 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆48Updated this week
• brett-fitz / pyMalleableProfileParser
  Parses Cobalt Strike malleable C2 profiles.
  ☆56Updated last week
• Hagrid29 / DumpAADSyncCreds
  C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…
  ☆38Updated last year
• nick-frischkorn / SuspendEventLogBOF
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆26Updated 2 years ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆48Updated 3 months ago
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆38Updated 4 years ago
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆35Updated last year
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆61Updated last year
• susMdT / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆50Updated last year
• Octoberfest7 / JumpSession_BOF
  Beacon Object File allowing creation of Beacons in different sessions.
  ☆80Updated 2 years ago
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆55Updated 4 months ago
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆39Updated last year
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆49Updated 3 months ago
• ausec-it / bof-registry
  Cobalt Strike beacon object file that allows you to query and make changes to the Windows Registry
  ☆27Updated 4 years ago
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆54Updated 2 years ago
• Hagrid29 / BOF-CredUI
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆19Updated 2 years ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆86Updated last year
• waawaa / AMSI_Rubeus_bypass
  ☆62Updated 2 years ago
• Cerbersec / pyMetaTwin
  Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform
  ☆16Updated last year
• EspressoCake / Defender-Exclusions-Creator-BOF
  ☆80Updated last year
• h4wkst3r / SharPersist
  Windows Persistence Toolkit in C#
  ☆36Updated 2 years ago