nickvourd / CS-Aggressor-KitLinks
Homemade Aggressor scripts kit for Cobalt Strike
☆66Updated 3 months ago
Alternatives and similar repositories for CS-Aggressor-Kit
Users that are interested in CS-Aggressor-Kit are comparing it to the libraries listed below
Sorting:
- Repository of scripts from my blog post on bypassing the YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellco…☆39Updated 7 months ago
- Help red teams find opsec processes during engagements☆40Updated 5 months ago
- A Tool that aims to evade av with binary padding☆151Updated 11 months ago
- ☆47Updated last year
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆46Updated last year
- ☆80Updated last year
- AdaptixFramework Extension Kit☆126Updated last week
- ☆88Updated last year
- ☆44Updated last month
- Library of BOFs to interact with SQL servers☆174Updated last month
- Winsocket for Cobalt Strike.☆98Updated last year
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆206Updated last year
- This project is an AES loader for c2 shellcode☆26Updated last year
- Execute shellcode via Bluetooth device authentication☆38Updated 3 months ago
- Execute commands in other Sessions☆88Updated 10 months ago
- A C# port from Invoke-GhostTask☆117Updated last year
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆50Updated 3 months ago
- ☆87Updated 2 years ago
- CVE-2024-40711-exp☆42Updated 7 months ago
- An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…☆135Updated 2 years ago
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆156Updated last year
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆205Updated last year
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆82Updated last month
- A simple Sleepmask BOF example☆101Updated 9 months ago
- ☆226Updated last year
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆77Updated 2 years ago
- wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures …☆34Updated 11 months ago
- ASPX ShellCode Loader☆50Updated last year
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆46Updated 3 weeks ago
- Robust Cobalt Strike shellcode loader with multiple advanced evasion features☆162Updated last month