Alternatives and similar repositories for external_c2_framework

Users that are interested in external_c2_framework are comparing it to the libraries listed below

• secgroundzero / tetanus
  Helper script for mangling CS payloads
  ☆51Updated 6 years ago
• Truneski / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆63Updated 6 years ago
• vysecurity / FSharp-Shellcode
  F# Implementation to spawn shellcode
  ☆47Updated 7 years ago
• icebearfriend / deckbuilder
  Cobalt Strike cna script for randomized argument spoofing
  ☆51Updated 6 years ago
• rasta-mouse / CollectorService
  ☆54Updated 6 years ago
• curi0usJack / rubeus2ccache
  Extracts all base64 ticket data from a rubeus /dump file and converts the tickets to ccache files for easy use with other tools.
  ☆67Updated 5 years ago
• rmdavy / WordAmsiBypass
  ☆37Updated 6 years ago
• bluscreenofjeff / MalleableC2Profiles
  Malleable C2 profiles for Cobalt Strike
  ☆75Updated 3 years ago
• djhohnstein / wlbsctrl_poc
  C++ POC code for the wlbsctrl.dll hijack on IKEEXT
  ☆54Updated 6 years ago
• rvrsh3ll / SharpExcel4-DCOM
  Port of Invoke-Excel4DCOM
  ☆104Updated 6 years ago
• vysecurity / CobaltSplunk
  Splunk Dashboard for CobaltStrike logs
  ☆89Updated 4 years ago
• offsecginger / AES-PowerShellCode
  Standalone version of my AES Powershell payload for Cobalt Strike.
  ☆111Updated 5 years ago
• outflanknl / DoH_c2_Trigger
  Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/
  ☆52Updated 7 years ago
• outflanknl / external_c2
  POC for Cobalt Strike external C2
  ☆139Updated 4 years ago
• MinervaLabsResearch / CoffeeShot
  CoffeeShot: Avoid Detection with Memory Injection
  ☆75Updated 7 years ago
• tevora-threat / aggressor-powerview
  PowerView menu for Cobalt Strike
  ☆68Updated 7 years ago
• bufferbandit / leak.docx
  Leak windows system info through a docx file
  ☆12Updated 5 years ago
• secgroundzero / CS-Aggressor-Scripts
  Aggressor Scripts for Cobalt Strike
  ☆76Updated last year
• 3gstudent / Office-Persistence
  Use powershell to test Office-based persistence methods
  ☆76Updated 4 years ago
• oldb00t / AggressorScripts
  Cobaltstrike Aggressor Scripts
  ☆28Updated 8 years ago
• threatexpress / persistence-aggressor-script
  initial commit
  ☆44Updated 11 months ago
• TarlogicSecurity / mod_ringbuilder
  Apache Module Backdoor (PoC)
  ☆48Updated 6 years ago
• elnerd / Get-NetNTLM
  Powershell module to get the NetNTLMv2 hash of the current user
  ☆96Updated 3 years ago
• v1ado / HIPS_LIPS
  Community maintained list of most popular HIPS service and process names on a Windows Platform.
  ☆43Updated 3 years ago
• k0fin / eternalrelayx
  eternalrelayx
  ☆36Updated 6 years ago
• 0katz / CVE-2019-12476
  ☆44Updated 5 years ago
• djhohnstein / TSMSISrv_poc
  C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll
  ☆61Updated 6 years ago
• freshness79 / unlock
  Microsoft Applocker evasion tool
  ☆39Updated 5 years ago
• FSecureLABS / SharpGPO-RemoteAccessPolicies
  A C# tool for enumerating remote access policies through group policy.
  ☆73Updated 6 years ago
• icebearfriend / Quickrundown
  Smart overlay for Cobalt Strike PS function
  ☆31Updated 6 years ago