Sentinel-One / CobaltStrikeParserLinks
☆1,096Updated last year
Alternatives and similar repositories for CobaltStrikeParser
Users that are interested in CobaltStrikeParser are comparing it to the libraries listed below
Sorting:
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆914Updated 4 years ago
- Hunts out CobaltStrike beacons and logs operator command output☆939Updated 11 months ago
- C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.☆1,080Updated last year
- Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.…☆839Updated 2 years ago
- ☆452Updated 4 years ago
- Defences against Cobalt Strike☆1,288Updated 3 years ago
- ☆2,133Updated 2 years ago
- Scan installed EDRs and AVs on Windows☆592Updated last month
- Cobalt Strike Malleable C2 Design and Reference Guide☆1,712Updated last year
- Situational Awareness commands implemented using Beacon Object Files☆1,517Updated last month
- A tool to kill antimalware protected processes☆1,465Updated 4 years ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,651Updated 2 years ago
- ☆1,497Updated 2 years ago
- Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons☆371Updated 3 years ago
- Evade sysmon and windows event logging☆626Updated 5 years ago
- Code and yara rules to detect and analyze Cobalt Strike☆270Updated 4 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆1,564Updated 4 years ago
- Detect and respond to Cobalt Strike beacons using ETW.☆508Updated 3 years ago
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.☆1,161Updated 4 months ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,089Updated 2 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,149Updated 4 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,541Updated 4 years ago
- A protective and Low Level Shellcode Loader that defeats modern EDR systems.☆912Updated last year
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,539Updated 2 years ago
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆745Updated 3 years ago
- ☆1,693Updated 11 months ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,357Updated last year
- The swiss army knife of LSASS dumping☆1,990Updated 11 months ago
- A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls o…☆1,130Updated 2 years ago
- ☆549Updated last year