Truneski / external_c2_frameworkLinks
Python api for usage with cobalt strike's External C2 specification
☆62Updated 6 years ago
Alternatives and similar repositories for external_c2_framework
Users that are interested in external_c2_framework are comparing it to the libraries listed below
Sorting:
- ☆44Updated 5 years ago
- ☆54Updated 6 years ago
- Helper script for mangling CS payloads☆51Updated 6 years ago
- Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/☆52Updated 6 years ago
- with metasploit☆63Updated 5 years ago
- ☆54Updated 6 years ago
- Use bitsadmin to maintain persistence and bypass Autoruns☆66Updated 8 years ago
- ☆94Updated 6 years ago
- Use powershell to test Office-based persistence methods☆76Updated 4 years ago
- Cobalt Strike cna script for randomized argument spoofing☆52Updated 6 years ago
- A cobaltstrike script that integrates DDEAuto Attacks☆64Updated 7 years ago
- Remove individual lines from Windows Event Viewer Log (EVT) files☆45Updated 4 years ago
- A fully automatic CVE-2019-0841 bypass targeting all versions of Edge in Windows 10.☆59Updated 6 years ago
- sploit☆67Updated 5 years ago
- Cobaltstrike Aggressor Scripts☆28Updated 8 years ago
- C++ POC code for the wlbsctrl.dll hijack on IKEEXT☆53Updated 6 years ago
- Eternalblue-Doublepulsar without Metasploit or python☆53Updated 6 years ago
- Apache Module Backdoor (PoC)☆48Updated 6 years ago
- Sound Research SECOMN service Privilege Escalation (windows 10)☆40Updated 5 years ago
- ☆24Updated 9 years ago
- Python api for usage with cobalt strike's External C2 specification☆70Updated 7 years ago
- Miscellaneous C-Sharp projects for red team activities☆24Updated 2 years ago
- APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )☆109Updated 6 years ago
- Remote process dumping automation. Use it to dump Windows credentials remotely and extract clear text with Mimikatz offline☆35Updated 5 years ago
- Windows Installer Bypass using Rollback Script .rbs and .rbf - Race Condition☆22Updated 6 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆46Updated 8 years ago
- foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV☆113Updated 3 years ago
- Contains poc's and my research works☆31Updated 2 years ago
- F# Implementation to spawn shellcode☆48Updated 7 years ago
- initial commit☆44Updated 8 months ago