nickvourd/CS-Aggressor-Kit external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nickvourd/CS-Aggressor-Kit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nickvourd/CS-Aggressor-Kit)

Close

nickvourd / CS-Aggressor-KitView on GitHubMore

• External links
• Readme badge

Homemade Aggressor scripts kit for Cobalt Strike

☆97Mar 12, 2026Updated last week

Alternatives and similar repositories for CS-Aggressor-Kit

Users that are interested in CS-Aggressor-Kit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nickvourd / SkyFall-Pack

  View on GitHub
  Your Skyfall Infrastructure Pack
  ☆91Jan 25, 2026Updated last month
• nickvourd / Responder-Parser

  View on GitHub
  Most Responder's configuration power in your hand.
  ☆54Jan 19, 2025Updated last year
• Tw1sm / list-wam-accounts

  View on GitHub
  List web account manager (WAM) accounts added to the current profile
  ☆24Dec 11, 2025Updated 3 months ago
• 0xRedpoll / ludus_cobaltstrike_teamserver

  View on GitHub
  Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers
  ☆18Mar 19, 2025Updated last year
• chryzsh / docker-cobaltstrike

  View on GitHub
  ☆26Nov 25, 2025Updated 3 months ago
• nickvourd / random_c2_profile

  View on GitHub
  Cobalt Strike random C2 Profile generator
  ☆16Mar 4, 2026Updated 2 weeks ago
• ghost-ng / slinger

  View on GitHub
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆57Updated this week
• djackreuter / btexec

  View on GitHub
  Execute shellcode via Bluetooth device authentication
  ☆41Feb 19, 2025Updated last year
• yutianqaq / SharpZipAES

  View on GitHub
  Tool developed using csharp (.net 4.5) for compressing and encrypting files to shorten transfer times. Supports multi-file compression an…
  ☆14Feb 15, 2024Updated 2 years ago
• 0xRedpoll / SignalKeyBOF

  View on GitHub
  BOF to decrypt Signal Desktop chat logs
  ☆70Feb 20, 2025Updated last year
• nickvourd / Mini-Tools

  View on GitHub
  Custom mini tools during Red Teaming engagements
  ☆24Mar 7, 2026Updated 2 weeks ago
• Tylous / Dent

  View on GitHub
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆15Apr 4, 2023Updated 2 years ago
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated last year
• sudonoodle / BOF-entra-authcode-flow

  View on GitHub
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆124Jan 17, 2026Updated 2 months ago
• dmcxblue / AzureStrike

  View on GitHub
  An HTA Application which builds Azure (Entra) Scenarios for Red Team Simulations
  ☆62Aug 18, 2025Updated 7 months ago
• ZephrFish / QoL-BOFs

  View on GitHub
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆138Dec 7, 2025Updated 3 months ago
• ZSECURE / zDocker-cobaltstrike

  View on GitHub
  Docker container for running CobaltStrike 4.10
  ☆38Sep 18, 2024Updated last year
• sudonoodle / Aggressor-NTFY

  View on GitHub
  Cobalt Strike notifications via NTFY.
  ☆15Sep 24, 2024Updated last year
• mlcsec / EDRenum-BOF

  View on GitHub
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆133Oct 4, 2024Updated last year
• nickvourd / RTI-Toolkit

  View on GitHub
  Remote Template Injection Toolkit
  ☆48Apr 7, 2024Updated last year
• nickvourd / SugarFree

  View on GitHub
  Less sugar (entropy) for your binaries
  ☆33Sep 10, 2025Updated 6 months ago
• NtDallas / Draugr

  View on GitHub
  BOF with Synthetic Stackframe
  ☆235Oct 30, 2025Updated 4 months ago
• Arturia-yun / honeypot

  View on GitHub
  Honeypot 蜜罐系统 基于Go语言开发的分布式蜜罐系统，用于网络安全监测、攻击行为捕获与分析。A distributed honeypot system developed in Go for network security monitoring, attack b…
  ☆16Mar 29, 2025Updated 11 months ago
• dmcxblue / Claude-C2

  View on GitHub
  Utilizng an MCP Server to communicate with your C2
  ☆88May 15, 2025Updated 10 months ago
• Tylous / FaceDancer

  View on GitHub
  FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loadi…
  ☆406Sep 26, 2024Updated last year
• Meowmycks / koneko

  View on GitHub
  Robust Cobalt Strike shellcode loader with multiple advanced evasion features
  ☆200Apr 21, 2025Updated 11 months ago
• WKL-Sec / docker-cobaltstrike

  View on GitHub
  Docker container for running CobaltStrike 4.7 and above
  ☆24Mar 20, 2025Updated last year
• JayGLXR / Rusty-Stardust

  View on GitHub
  A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…
  ☆59Mar 17, 2025Updated last year
• FalconForceTeam / bof-winrm-plugin-jump

  View on GitHub
  ☆33Jan 23, 2025Updated last year
• scrt / KexecDDPlus

  View on GitHub
  Exploiting the KsecDD Windows driver through Server Silos
  ☆77Nov 11, 2024Updated last year
• REDMED-X / InjectKit

  View on GitHub
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆106Jan 24, 2024Updated 2 years ago
• Octoberfest7 / Enumprotections_BOF

  View on GitHub
  A BOF to enumerate system process, their protection levels, and more.
  ☆125Nov 27, 2024Updated last year
• Teach2Breach / rpeloader

  View on GitHub
  use python on windows with full submodule support without installation
  ☆30Jan 23, 2025Updated last year
• rasta-mouse / Crystal-Loaders

  View on GitHub
  A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike
  ☆193Oct 29, 2025Updated 4 months ago
• Mayyhem / Maestro

  View on GitHub
  Abusing Azure services over C2
  ☆367Jan 20, 2026Updated 2 months ago
• RedSiege / GraphStrike

  View on GitHub
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆626Jun 25, 2024Updated last year
• dmcxblue / NtCreateUserProcessBOF

  View on GitHub
  An Aggressor Script that utilizes NtCreateUserProcess to run binaries
  ☆31Jan 30, 2025Updated last year
• typeconfused / windows-ps-callbacks-experiments

  View on GitHub
  Files for http://blog.deniable.org/posts/windows-callbacks/
  ☆12Jan 1, 2023Updated 3 years ago
• dr4ndrei / OHFFLdr

  View on GitHub
  One-header configurable C++20 COFF loader
  ☆21Jul 21, 2025Updated 8 months ago