RomanEmelyanov / CobaltStrikeForensicLinks
Toolset for research malware and Cobalt Strike beacons
☆211Updated 3 months ago
Alternatives and similar repositories for CobaltStrikeForensic
Users that are interested in CobaltStrikeForensic are comparing it to the libraries listed below
Sorting:
- Simulating Adversary Operations☆93Updated 7 years ago
- Static based decoders for malware samples☆93Updated 4 years ago
- Lateral Movement technique using DCOM and HTA☆233Updated 2 years ago
- An Insider Threat Toolkit☆152Updated 6 years ago
- Splunk Dashboard for CobaltStrike logs☆89Updated 4 years ago
- Historical list of {Cobalt Strike,NanoHTTPD} servers☆121Updated 6 years ago
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆168Updated 4 years ago
- Presentation material presented by Outflank team members at public events.☆187Updated 6 months ago
- DLL Password Filter Implant with Exfiltration Capabilities☆138Updated 5 years ago
- Ex-pv8's☆64Updated 5 years ago
- Petaq - Purple Team Command & Control Server☆105Updated 2 years ago
- A collection of useful scripts for Cobalt Strike☆170Updated 10 months ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆166Updated 4 years ago
- Constrained Language Mode + AMSI bypass all in one☆157Updated 5 years ago
- Some .ps1 scripts for pentesting☆132Updated 4 years ago
- a tool to make it easy and fast to test various forms of injection☆173Updated 6 years ago
- lateral movement techniques that can be used during red team exercises☆273Updated 5 years ago
- Automated Tactics Techniques & Procedures☆255Updated 2 years ago
- Aggregation of Cobalt Strike's aggressor scripts.☆143Updated 7 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆76Updated 6 years ago
- C# Targeted Attack Reconnissance Tools☆122Updated 4 years ago
- CobaltStrike External C2 for Websockets☆193Updated 5 years ago
- Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.☆121Updated 4 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆125Updated 6 years ago
- Scripts for performing and detecting parent PID spoofing☆147Updated 5 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆170Updated 4 months ago
- Powershell script for enumerating vulnerable DCOM Applications☆260Updated 6 years ago
- A "tiny" meterpreter stager☆128Updated 5 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- ☆79Updated 8 years ago