WKL-Sec / Malleable-CS-ProfilesLinks
A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
☆481Updated 3 months ago
Alternatives and similar repositories for Malleable-CS-Profiles
Users that are interested in Malleable-CS-Profiles are comparing it to the libraries listed below
Sorting:
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆642Updated last week
- Collection of UAC Bypass Techniques Weaponized as BOFs☆546Updated last year
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆487Updated 4 months ago
- UAC Bypass By Abusing Kerberos Tickets☆499Updated 2 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆512Updated last year
- A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk☆461Updated last year
- ☆337Updated 6 months ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆570Updated 7 months ago
- Terminate AV/EDR Processes using kernel driver☆348Updated 2 years ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆405Updated last year
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆430Updated last year
- Fileless atexec, no more need for port 445☆395Updated last year
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆607Updated last year
- COM Hijacking VOODOO☆315Updated 5 months ago
- Go shellcode loader that combines multiple evasion techniques☆378Updated 2 years ago
- Command and Control Framework written in C#☆415Updated 2 years ago
- Escalate Service Account To LocalSystem via Kerberos☆397Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆445Updated last year
- Kill AV/EDR leveraging BYOVD attack☆370Updated 2 years ago
- micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.☆194Updated last year
- Fileless Command Execution for Lateral Movement in Nim☆376Updated last year
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆328Updated 2 years ago
- transform your payload into ipv4/ipv6/mac arrays☆189Updated 3 years ago
- AdaptixFramework Extension Kit☆215Updated 3 weeks ago
- elevate to SYSTEM any way we can! Metasploit and PSEXEC getsystem alternative☆372Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆504Updated 3 months ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆307Updated last year
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …