bluscreenofjeff/Malleable-C2-Randomizer external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

bluscreenofjeff/Malleable-C2-Randomizer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/bluscreenofjeff/Malleable-C2-Randomizer)

Close

bluscreenofjeff / Malleable-C2-RandomizerView on GitHubMore

• External links
• Readme badge

A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls

☆454Sep 9, 2022Updated 3 years ago

Alternatives and similar repositories for Malleable-C2-Randomizer

Users that are interested in Malleable-C2-Randomizer are comparing it to the libraries listed below

• harleyQu1nn / AggressorScripts

  View on GitHub
  Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
  ☆1,529Jun 30, 2023Updated 2 years ago
• RedSiege / C2concealer

  View on GitHub
  C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
  ☆1,098Jun 25, 2024Updated last year
• rsmudge / Malleable-C2-Profiles

  View on GitHub
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆1,584May 18, 2021Updated 4 years ago
• Und3rf10w / Aggressor-scripts

  View on GitHub
  Aggressor scripts I've made for Cobalt Strike
  ☆413Jul 29, 2023Updated 2 years ago
• threatexpress / cs2modrewrite

  View on GitHub
  Convert Cobalt Strike profiles to modrewrite scripts
  ☆611Jan 30, 2023Updated 3 years ago
• ryhanson / ExternalC2

  View on GitHub
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆290Nov 23, 2017Updated 8 years ago
• bluscreenofjeff / AggressorScripts

  View on GitHub
  Aggressor scripts for use with Cobalt Strike 3.0+
  ☆885Sep 9, 2022Updated 3 years ago
• mdsecactivebreach / CACTUSTORCH

  View on GitHub
  CACTUSTORCH: Payload Generation for Adversary Simulations
  ☆1,014Jul 3, 2018Updated 7 years ago
• killswitch-GUI / CobaltStrike-ToolKit

  View on GitHub
  Some useful scripts for CobaltStrike
  ☆859Dec 17, 2020Updated 5 years ago
• vysecurity / morphHTA

  View on GitHub
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆526Apr 14, 2023Updated 2 years ago
• threatexpress / malleable-c2

  View on GitHub
  Cobalt Strike Malleable C2 Design and Reference Guide
  ☆1,750Dec 13, 2023Updated 2 years ago
• vysecurity / ANGRYPUPPY

  View on GitHub
  Bloodhound Attack Path Automation in CobaltStrike
  ☆326Apr 26, 2020Updated 5 years ago
• Coalfire-Research / Red-Baron

  View on GitHub
  Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.
  ☆923Apr 6, 2021Updated 4 years ago
• RhinoSecurityLabs / Aggressor-Scripts

  View on GitHub
  Aggregation of Cobalt Strike's aggressor scripts.
  ☆142Mar 31, 2018Updated 7 years ago
• RedSiege / AggressorAssessor

  View on GitHub
  Aggressor scripts for phases of a pen test or red team assessment
  ☆184Aug 13, 2024Updated last year
• SpiderLabs / SharpCompile

  View on GitHub
  SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…
  ☆290Aug 7, 2020Updated 5 years ago
• Und3rf10w / external_c2_framework

  View on GitHub
  Python api for usage with cobalt strike's External C2 specification
  ☆241Mar 22, 2023Updated 2 years ago
• vysecurity / Aggressor-VYSEC

  View on GitHub
  ☆210Jan 30, 2019Updated 7 years ago
• mdsecactivebreach / SharpShooter

  View on GitHub
  Payload Generation Framework
  ☆1,972Aug 21, 2024Updated last year
• Mr-Un1k0d3r / PowerLessShell

  View on GitHub
  Run PowerShell command without invoking powershell.exe
  ☆1,533Mar 23, 2023Updated 2 years ago
• nccgroup / demiguise

  View on GitHub
  HTA encryption tool for RedTeams
  ☆1,422Nov 9, 2022Updated 3 years ago
• 0xthirteen / MoveKit

  View on GitHub
  Cobalt Strike kit for Lateral Movement
  ☆678Feb 21, 2020Updated 6 years ago
• 0xthirteen / StayKit

  View on GitHub
  Cobalt Strike kit for Persistence
  ☆494Jan 27, 2020Updated 6 years ago
• dcsync / pycobalt

  View on GitHub
  Cobalt Strike Python API
  ☆304Jan 27, 2022Updated 4 years ago
• rvrsh3ll / CPLResourceRunner

  View on GitHub
  Run shellcode from resource
  ☆259Dec 13, 2020Updated 5 years ago
• codewhitesec / LethalHTA

  View on GitHub
  Lateral Movement technique using DCOM and HTA
  ☆235Oct 18, 2022Updated 3 years ago
• GreatSCT / GreatSCT

  View on GitHub
  The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…
  ☆1,128Feb 10, 2021Updated 5 years ago
• icebearfriend / deckbuilder

  View on GitHub
  Cobalt Strike cna script for randomized argument spoofing
  ☆51Apr 4, 2019Updated 6 years ago
• bluscreenofjeff / Red-Team-Infrastructure-Wiki

  View on GitHub
  Wiki to collect Red Team infrastructure hardening resources
  ☆4,450Oct 1, 2025Updated 5 months ago
• sensepost / ruler

  View on GitHub
  A tool to abuse Exchange services
  ☆2,300Jun 10, 2024Updated last year
• rsmudge / ElevateKit

  View on GitHub
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆928Jun 22, 2020Updated 5 years ago
• Cn33liz / p0wnedShell

  View on GitHub
  PowerShell Runspace Post Exploitation Toolkit
  ☆1,548Aug 2, 2019Updated 6 years ago
• mgeeky / cobalt-arsenal

  View on GitHub
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,097Apr 19, 2023Updated 2 years ago
• HarmJ0y / DAMP

  View on GitHub
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆381Jul 25, 2019Updated 6 years ago
• eladshamir / Internal-Monologue

  View on GitHub
  Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
  ☆1,642Oct 11, 2018Updated 7 years ago
• trustedsec / CS-Situational-Awareness-BOF

  View on GitHub
  Situational Awareness commands implemented using Beacon Object Files
  ☆1,722Feb 23, 2026Updated last week
• rvrsh3ll / FindFrontableDomains

  View on GitHub
  Search for potential frontable domains
  ☆644Mar 22, 2023Updated 2 years ago
• SpiderLabs / DoHC2

  View on GitHub
  DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2…
  ☆448Aug 7, 2020Updated 5 years ago
• Cn33liz / StarFighters

  View on GitHub
  A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
  ☆321Jun 5, 2017Updated 8 years ago