RomanEmelyanov / CobaltStrikeForensicLinks
Toolset for research malware and Cobalt Strike beacons
☆211Updated 2 months ago
Alternatives and similar repositories for CobaltStrikeForensic
Users that are interested in CobaltStrikeForensic are comparing it to the libraries listed below
Sorting:
- Static based decoders for malware samples☆93Updated 4 years ago
- Aggregation of Cobalt Strike's aggressor scripts.☆143Updated 7 years ago
- Simulating Adversary Operations☆93Updated 7 years ago
- An Insider Threat Toolkit☆151Updated 6 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆113Updated 5 years ago
- A collection of useful scripts for Cobalt Strike☆170Updated 9 months ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆166Updated 4 years ago
- Splunk Dashboard for CobaltStrike logs☆89Updated 4 years ago
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆154Updated 6 years ago
- Lateral Movement technique using DCOM and HTA☆233Updated 2 years ago
- APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )☆108Updated 6 years ago
- Presentation material presented by Outflank team members at public events.☆187Updated 5 months ago
- lateral movement techniques that can be used during red team exercises☆272Updated 5 years ago
- ☆229Updated 7 years ago
- Cobalt Strike SCT payload obfuscator☆143Updated 7 years ago
- Constrained Language Mode + AMSI bypass all in one☆157Updated 5 years ago
- ☆79Updated 8 years ago
- CobaltStrike External C2 for Websockets☆193Updated 5 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆76Updated 6 years ago
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆168Updated 4 years ago
- Automated script for setting up CobaltStrike redirectors (nginx reverse proxy, letsencrypt)☆143Updated 7 years ago
- Python api for usage with cobalt strike's External C2 specification☆237Updated 2 years ago
- Historical list of {Cobalt Strike,NanoHTTPD} servers☆121Updated 6 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆258Updated 6 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆131Updated 3 months ago
- ☆272Updated 2 years ago
- Ex-pv8's☆63Updated 5 years ago
- DLL Password Filter Implant with Exfiltration Capabilities☆138Updated 5 years ago
- a tool to make it easy and fast to test various forms of injection☆173Updated 6 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆286Updated 7 years ago