A Cobalt Strike RL built with Crystal Palace — module overloading, NtContinue entry transfer, call stack spoofing, sleep masking, and static signature removal.
☆122Mar 15, 2026Updated this week
Alternatives and similar repositories for KaplaStrike
Users that are interested in KaplaStrike are comparing it to the libraries listed below
Sorting:
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆45Sep 25, 2024Updated last year
- converts sRDI compatible dlls to shellcode☆35Jan 20, 2025Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆189Jan 17, 2026Updated 2 months ago
- PoC for generating bthprops.cpl module designed to be loaded by Fsquirt.exe LOLBin☆121Jan 4, 2026Updated 2 months ago
- find dll base addresses without PEB WALK☆162Jul 13, 2025Updated 8 months ago
- ☆55May 31, 2025Updated 9 months ago
- A portable C# utility for enumerating local and remote windows sessions☆57Jan 1, 2026Updated 2 months ago
- ASPX Web Shell with COFF Loader☆112Mar 10, 2026Updated last week
- A bunch of shenanigans using functions, VEH and more☆38Jun 8, 2025Updated 9 months ago
- Vectored Exception Handling Squared☆31Dec 27, 2025Updated 2 months ago
- List web account manager (WAM) accounts added to the current profile☆24Dec 11, 2025Updated 3 months ago
- Sleep obfuscation☆270Dec 13, 2024Updated last year
- Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames☆154Nov 23, 2025Updated 3 months ago
- A collection of position independent coding resources☆107Nov 15, 2025Updated 4 months ago
- TypeLib persistence technique☆141Oct 22, 2024Updated last year
- A repo of scripts I find helpful for daily tasks.☆30Dec 8, 2025Updated 3 months ago
- early cascade injection PoC based on Outflanks blog post☆239Nov 7, 2024Updated last year
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆31Feb 7, 2025Updated last year
- An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…☆103Jan 9, 2026Updated 2 months ago
- Python based tool for generating Shellcode from PIC C☆43Nov 6, 2025Updated 4 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆195Nov 27, 2024Updated last year
- Dynamically resolve API function addresses at runtime in a secure manner.☆73Nov 11, 2025Updated 4 months ago
- A BOF to enumerate system process, their protection levels, and more.☆125Nov 27, 2024Updated last year
- Phantom is project created to perform loading and executing .NET assemblies directly in memory within an IIS environment running in full‑…☆68Mar 10, 2026Updated last week
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- ☆42Feb 18, 2025Updated last year
- ☆33Mar 19, 2025Updated last year
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆91Jan 2, 2026Updated 2 months ago
- BOF with Synthetic Stackframe☆233Oct 30, 2025Updated 4 months ago
- This repository contains a collection of scripts I use regularly for offensive security-related tasks.☆16Mar 9, 2026Updated last week
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆116Dec 21, 2025Updated 2 months ago
- Docker container for running CobaltStrike 4.7 and above☆24Mar 20, 2025Updated last year
- dcsync bof☆46Feb 13, 2026Updated last month
- ☆59Feb 19, 2026Updated last month
- ☆26Aug 11, 2025Updated 7 months ago
- Audiodg.exe DLL hijacking for LPE with reboot-free restart primitive. Executes code as LOCAL SERVICE, escalates to SYSTEM via Scheduled T…☆89Jan 24, 2026Updated last month
- Call Stack Spoofing for Rust☆212Jan 28, 2026Updated last month
- Automated DLL Hijacking Discovery, Validation, and Confirmation. Turning local misconfigurations into weaponized, confirmed attack paths.☆225Mar 13, 2026Updated last week
- Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack. Implemented in C#, C++, Crystal, P…☆128Feb 17, 2026Updated last month