blackarrowsec / Malleable-C2-Profiles
Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.
☆17Updated 3 years ago
Alternatives and similar repositories for Malleable-C2-Profiles:
Users that are interested in Malleable-C2-Profiles are comparing it to the libraries listed below
- D/Invoke port of UrbanBishop☆29Updated 4 years ago
- ☆36Updated 3 years ago
- BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.☆17Updated 3 years ago
- Ansible playbooks for instrumenting a Red Team environment with RedElk☆47Updated 4 years ago
- ☆13Updated last year
- Timestomping module: overwrite file create/modify times in .NET (no pinvoke)☆24Updated 3 years ago
- ☆24Updated 3 years ago
- Reproducible and extensible BloodHound playbooks☆42Updated 5 years ago
- Generate Apache mod_rewrite rules for Mythic C2 profiles☆28Updated 3 years ago
- A Couple of Python Scripts Leveraging MS365's GraphAPI to Send Custom Calendar Events / Emails from Cheap O365 Accounts☆17Updated 10 months ago
- BH Cypher Queries picked up from random places☆38Updated 6 years ago
- ☆47Updated 4 years ago
- Caesar-Cipher based encryption☆29Updated 4 years ago
- Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.☆37Updated 5 years ago
- ☆20Updated 3 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- Service Enumeration C# .NET Assembly☆60Updated 3 years ago
- Protect your servers with a secret header☆29Updated 4 years ago
- Some Hashcat Rules for 2020 and beyond. Contributions encouraged!☆24Updated 2 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- Ansible role to install Cobalt Strike and optionally configure as Teamserver☆32Updated 3 years ago
- Apply a filter to the events being reported by windows event logging☆15Updated 4 years ago
- Walking the PEB in VBA☆22Updated 4 years ago
- A collection of Neo4j/BloodHound queries to collect interesting information.☆45Updated 2 years ago
- Weaponizing CLRvoyance for Post-Ex .NET Execution☆35Updated 3 years ago
- A more obfuscated CactusTorch targeted towards office☆32Updated 4 years ago
- A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.☆33Updated 3 years ago
- A simple proof of concept for detecting use of Cobalt Strike's execute-assembly☆59Updated 2 years ago
- ☆17Updated 4 years ago
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆40Updated 3 years ago