cham423 / cs-tools
cobalt strike tools
☆31Updated 3 years ago
Alternatives and similar repositories for cs-tools:
Users that are interested in cs-tools are comparing it to the libraries listed below
- ☆25Updated 3 years ago
- A Cobalt Strike Aggressor script to generate GadgetToJScript payloads☆101Updated 4 years ago
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆40Updated 3 years ago
- C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)☆22Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆54Updated 3 years ago
- MiniDumpWriteDump behavior modification hook☆50Updated 4 years ago
- Generate droppers with encrypted payloads automatically.☆53Updated 3 years ago
- ☆37Updated 2 years ago
- ☆57Updated 3 years ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆96Updated 3 years ago
- Collection of Beacon Object Files (BOFs) for shells and lols☆117Updated 3 years ago
- aggressor and pycobalt scripts.☆18Updated 4 years ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- IOXIDResolver from AirBus Security/PingCastle☆47Updated 4 years ago
- A BOF to interact with COM objects associated with the Windows software firewall.☆102Updated 3 years ago
- ☆92Updated 3 years ago
- WhoAmI by asking the LDAP service on a domain controller.☆61Updated 3 years ago
- SharpSvc is a simple code set to interact with the SC Manager API and is compatible with Cobalt Strike.☆25Updated last year
- ☆92Updated 2 years ago
- A care package of useful bofs for red team engagments☆54Updated 3 months ago
- ☆68Updated 3 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆83Updated 2 years ago
- Extended Process List (Search functionality)☆29Updated 4 years ago
- Remove API hooks from a Beacon process.☆57Updated 3 years ago
- Load C# Code straight to memory☆53Updated 4 years ago
- AMSI Bypass Via the Heap☆106Updated 4 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆27Updated 4 years ago
- ☆62Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆141Updated 3 years ago
- .NET project for installing Persistence☆64Updated 3 years ago