RedSiege / C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
☆991Updated 2 months ago
Related projects: ⓘ
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,029Updated last year
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.☆1,020Updated 5 months ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆894Updated 3 years ago
- Cobalt Strike random C2 Profile generator☆618Updated last year
- Hunts out CobaltStrike beacons and logs operator command output☆870Updated 2 weeks ago
- ☆613Updated this week
- Situational Awareness commands implemented using Beacon Object Files☆1,222Updated last week
- Cobalt Strike Malleable C2 Design and Reference Guide☆1,581Updated 9 months ago
- Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.…☆749Updated last year
- Cobalt Strike Shellcode Generator☆635Updated 8 months ago
- Self-developed tools for Lateral Movement/Code Execution☆685Updated 3 years ago
- Cobalt Strike kit for Lateral Movement☆640Updated 4 years ago
- Convert Cobalt Strike profiles to modrewrite scripts☆578Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,112Updated 10 months ago
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆910Updated last year
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,385Updated last year
- Some notes and examples for cobalt strike's functionality☆969Updated 2 years ago
- PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…☆904Updated 3 months ago
- Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands☆961Updated 2 years ago
- Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).☆710Updated 9 months ago
- ☆1,008Updated 9 months ago
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,564Updated 2 weeks ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,241Updated 9 months ago
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆327Updated last year
- ☆1,376Updated last year
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…☆718Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆775Updated last year
- CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.☆1,325Updated 2 years ago
- Kerberos unconstrained delegation abuse toolkit☆1,104Updated 8 months ago
- Windows AV Evasion☆729Updated 4 years ago