Alternatives and similar repositories for CobaltStrike-Tools

Users that are interested in CobaltStrike-Tools are comparing it to the libraries listed below

• hausec / CobaltStrikeToGhostWriter

  View on GitHub
  Log converter from CS log to Ghostwriter CSV
  ☆31Nov 23, 2020Updated 5 years ago
• TheWover / ModuleMonitor

  View on GitHub
  Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…
  ☆42May 9, 2019Updated 6 years ago
• haxrob / gtpdoor-scan

  View on GitHub
  ☆23Mar 17, 2024Updated last year
• sliverarmory / beignet

  View on GitHub
  MacOS Shared Library to Shellcode Loader
  ☆39Feb 5, 2026Updated last week
• ajpc500 / RelayRumbler

  View on GitHub
  A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.
  ☆18Jul 2, 2021Updated 4 years ago
• outflanknl / RedFile

  View on GitHub
  Serving files with conditions, serverside keying and more.
  ☆18May 26, 2022Updated 3 years ago
• g-les / macho_similarity

  View on GitHub
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆12Mar 21, 2024Updated last year
• LaresLLC / AzureTokenExtractor

  View on GitHub
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆24May 20, 2023Updated 2 years ago
• mdsecactivebreach / Execute-GithubAssembly-Aggressor

  View on GitHub
  Aggressor Script to Execute Assemblies from Github
  ☆71Nov 30, 2020Updated 5 years ago
• sensepost / net-creds

  View on GitHub
  Sniffs sensitive data from interface or pcap
  ☆14Feb 19, 2018Updated 7 years ago
• offsecginger / AggressorScripts

  View on GitHub
  Various Aggressor Scripts I've Created.
  ☆151Jan 1, 2022Updated 4 years ago
• dsnezhkov / TruffleSnout

  View on GitHub
  Iterative AD discovery toolkit for offensive operations
  ☆85Mar 16, 2020Updated 5 years ago
• jfmaes / Emulation-Workshop

  View on GitHub
  The repository accompanying the Buer Emulation workshop
  ☆23Aug 18, 2021Updated 4 years ago
• leonjza / tc2

  View on GitHub
  treafik fronted c2 examples
  ☆25Dec 6, 2020Updated 5 years ago
• dafthack / lab_scripts

  View on GitHub
  Repo for hosting various scripts for creating users for password spraying and other password attacks.
  ☆11Jul 9, 2020Updated 5 years ago
• malcomvetter / DieHard

  View on GitHub
  PoC: process watcher patterns to make killing a process hard.
  ☆11Aug 1, 2018Updated 7 years ago
• guervild / InlineZipper

  View on GitHub
  ☆25Feb 9, 2022Updated 4 years ago
• threatexpress / mythic2modrewrite

  View on GitHub
  Generate Apache mod_rewrite rules for Mythic C2 profiles
  ☆36Jul 22, 2021Updated 4 years ago
• slyd0g / SharpCrashEventLog

  View on GitHub
  C# port of LogServiceCrash
  ☆46Oct 7, 2020Updated 5 years ago
• Yaxser / CobaltStrike-BOF

  View on GitHub
  Collection of beacon BOF written to learn windows and cobaltstrike
  ☆362Feb 24, 2023Updated 2 years ago
• RedSiege / CredCheck

  View on GitHub
  .NET wrapper around LogonUserA to test creds
  ☆12Jun 2, 2022Updated 3 years ago
• knavesec / BloodHound-Custom-Queries

  View on GitHub
  Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
  ☆12Jun 21, 2021Updated 4 years ago
• EspressoCake / Cobalt_Strike_Ansible

  View on GitHub
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Oct 1, 2021Updated 4 years ago
• nyxgeek / AzureAD_Autologon_Brute

  View on GitHub
  Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-ac…
  ☆106Jun 27, 2024Updated last year
• rkeithhill / PoshWinRT

  View on GitHub
  Windows Runtime API Interop Utilities for Windows PowerShell
  ☆30Jan 10, 2020Updated 6 years ago
• W00t3k / inSp3ctor

  View on GitHub
  AWS S3 Bucket/Object Finder
  ☆25Nov 11, 2017Updated 8 years ago
• 3gstudent / Office-Persistence

  View on GitHub
  Use powershell to test Office-based persistence methods
  ☆76Apr 17, 2021Updated 4 years ago
• MartinIngesen / MSOLSpray

  View on GitHub
  A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …
  ☆97Jun 6, 2024Updated last year
• V1V1 / Sleight

  View on GitHub
  Empire HTTP(S) C2 redirector setup script
  ☆48Jul 10, 2018Updated 7 years ago
• k3idii / ION

  View on GitHub
  Indicators of Normality
  ☆11Jul 22, 2022Updated 3 years ago
• stufus / reconerator

  View on GitHub
  C# Targeted Attack Reconnissance Tools
  ☆120Jan 11, 2021Updated 5 years ago
• PwnDexter / FindFrontableDomains

  View on GitHub
  Forked and updated with some additional features over the original
  ☆17Mar 30, 2021Updated 4 years ago
• pry0cc / pscan

  View on GitHub
  A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.
  ☆16Jul 1, 2020Updated 5 years ago
• DefensiveOrigins / DomainBuildScripts

  View on GitHub
  Build a domain with three quick PowerShell scripts!
  ☆29Jun 3, 2020Updated 5 years ago
• Yaxser / SharpPhish

  View on GitHub
  Using outlook COM objects to create convincing phishing emails without the user noticing. This project is meant for internal phishing.
  ☆155Dec 22, 2020Updated 5 years ago
• rsmudge / unhook-bof

  View on GitHub
  Remove API hooks from a Beacon process.
  ☆283Sep 18, 2021Updated 4 years ago
• zMarch / suspect

  View on GitHub
  suspect is a simple bash triage tool
  ☆19Aug 30, 2018Updated 7 years ago
• elicn / xstrings

  View on GitHub
  Print the strings of encoded printable characters in files
  ☆12Jul 19, 2015Updated 10 years ago
• dutchcoders / identify

  View on GitHub
  Identify web application versions
  ☆18Apr 14, 2017Updated 8 years ago