A collection of Cobalt Strike Aggressor scripts.
☆114Jan 3, 2022Updated 4 years ago
Alternatives and similar repositories for cobaltstrike-aggressor-scripts
Users that are interested in cobaltstrike-aggressor-scripts are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆113Feb 17, 2025Updated last year
- Quickly generate every payload type for each listener and optionally host via HTTP.☆22Aug 23, 2021Updated 4 years ago
- LSTAR - CobaltStrike Translated to EN☆23Jun 15, 2023Updated 3 years ago
- Bake shellcode to get malicious.exe☆28Jul 25, 2023Updated 2 years ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆328May 17, 2024Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type☆215Mar 18, 2024Updated 2 years ago
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- A C# port from Invoke-GhostTask☆120Jan 5, 2024Updated 2 years ago
- Automated Active Directory lab running on Proxmox☆90Aug 8, 2025Updated 10 months ago
- Certified Red Team Operator (CRTO) Cheatsheet and Checklist☆247Mar 16, 2024Updated 2 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆92Dec 15, 2022Updated 3 years ago
- Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.☆218Oct 9, 2022Updated 3 years ago
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆491Jul 12, 2023Updated 2 years ago
- Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.☆146Sep 8, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆288Jun 8, 2023Updated 3 years ago
- ☆29May 10, 2024Updated 2 years ago
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆46Sep 25, 2024Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆146Dec 16, 2023Updated 2 years ago
- ☆84May 19, 2024Updated 2 years ago
- ☆46Jun 21, 2023Updated 3 years ago
- Parses logs created by Cobalt Strike, Brute Ratel, OC2 and creates an SQLite DB which can be used to create custom reports.☆31Mar 18, 2026Updated 3 months ago
- Execute unmanaged Windows executables in CobaltStrike Beacons☆724Mar 4, 2023Updated 3 years ago
- Some notes and examples for cobalt strike's functionality☆1,138Feb 8, 2022Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆211Jun 10, 2024Updated 2 years ago
- ☆60Dec 15, 2023Updated 2 years ago
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆516Aug 7, 2024Updated last year
- exfiltration/infiltration toolkit☆23Dec 20, 2023Updated 2 years ago
- Heavily obfuscated ASP web shell generation tool.☆176Apr 26, 2024Updated 2 years ago
- TCP Port Redirection Utility☆783Jan 31, 2023Updated 3 years ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆128Jun 22, 2020Updated 6 years ago
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆104Jan 7, 2022Updated 4 years ago
- ☆570Mar 28, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- DLL Exports Extraction BOF with optional NTFS transactions.☆92Nov 5, 2021Updated 4 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆147Mar 9, 2024Updated 2 years ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆135Jun 16, 2024Updated 2 years ago
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆102Jan 2, 2026Updated 6 months ago
- .net config loader☆352Nov 9, 2023Updated 2 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆644Mar 2, 2026Updated 4 months ago
- A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.☆203Dec 27, 2023Updated 2 years ago