Alternatives and similar repositories for CS-Aggressor-Kit:

Users that are interested in CS-Aggressor-Kit are comparing it to the libraries listed below

• WafflesExploits / CobaltStrike-YARA-Bypass-f0b627fc
  Repository of scripts from my blog post on bypassing the YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellco…
  ☆35Updated 5 months ago
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆47Updated 11 months ago
• EspressoCake / Defender-Exclusions-Creator-BOF
  ☆78Updated last year
• kyxiaxiang / Safetasklist
  Help red teams find opsec processes during engagements
  ☆36Updated 3 months ago
• Tw1sm / SQL-BOF
  Library of BOFs to interact with SQL servers
  ☆160Updated 3 months ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆76Updated 2 years ago
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆97Updated last year
• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆42Updated 10 months ago
• weaselsec / GodPotato-Aggressor-Script
  ☆85Updated last year
• realstatus / CVE-2024-40711-Exp
  CVE-2024-40711-exp
  ☆39Updated 5 months ago
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆93Updated 6 months ago
• djackreuter / btexec
  Execute shellcode via Bluetooth device authentication
  ☆34Updated last month
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆39Updated last year
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆93Updated last year
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆149Updated last year
• Ridter / netsync
  Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.
  ☆46Updated 3 weeks ago
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆42Updated 11 months ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆109Updated 8 months ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆79Updated last year
• Octoberfest7 / CVE-2023-36874_BOF
  Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
  ☆205Updated last year
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆45Updated 2 months ago
• battleoverflow / lsass-dump
  Simple LSASS Dumper created using C++ as an alternative to using Mimikatz memory dumper
  ☆54Updated 11 months ago
• deh00ni / NtDumpBOF
  ☆95Updated 6 months ago
• maxDcb / C2TeamServer
  TeamServer and Client of Exploration Command and Control Framework
  ☆110Updated this week
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆114Updated last year
• ZephrFish / QoL-BOFs
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆127Updated 3 months ago
• Leo4j / SessionExec
  Execute commands in other Sessions
  ☆85Updated 7 months ago
• ScriptIdiot / BOF-patchit
  An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…
  ☆129Updated 2 years ago
• c3r3br4t3 / ShadowRDP
  ☆68Updated last year