attactics / cslogwatch
Cobalt Strike log state tracking, parsing, and storage
☆23Updated 5 years ago
Alternatives and similar repositories for cslogwatch:
Users that are interested in cslogwatch are comparing it to the libraries listed below
- Protect your servers with a secret header☆29Updated 4 years ago
- Walking the PEB in VBA☆22Updated 4 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆33Updated 5 years ago
- Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.☆32Updated 6 years ago
- ☆17Updated 6 years ago
- ☆25Updated 6 years ago
- Forked and updated with some additional features over the original☆16Updated 3 years ago
- Library of traffic redirectors☆26Updated 4 years ago
- ☆28Updated 7 years ago
- My musings with C#☆28Updated 2 years ago
- ☆16Updated 5 years ago
- The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…☆29Updated 6 years ago
- Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…☆52Updated 11 months ago
- Apfell implant written in C#.☆8Updated 4 years ago
- ☆13Updated 3 years ago
- Obtains a crackable hash for the current user account☆23Updated 6 years ago
- Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials☆20Updated 4 years ago
- Converts the output from Invoke-Kerberoast into hashcat format.☆32Updated 6 years ago
- Bloodhound Attack Path Automation in CobaltStrike☆29Updated 7 years ago
- Microsoft Applocker evasion tool☆38Updated 5 years ago
- Helper script for mangling CS payloads☆52Updated 5 years ago
- ☆37Updated 5 years ago
- SilkETW & SilkService☆40Updated 5 years ago
- AMSI bypass stager generator☆28Updated 6 years ago
- ☆26Updated 6 years ago
- Convert Empire profiles to Apache mod_rewrite scripts☆27Updated 5 years ago
- ☆14Updated 5 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- Source code in Win32 ASM and C for a shellcode execution wrapper designed to mitigate the risk of shellcode execution on a host other tha…☆19Updated 8 years ago
- various slides and presentations I've worked on☆18Updated last year