Alternatives and similar repositories for CobaltStrike-Redirector

Users that are interested in CobaltStrike-Redirector are comparing it to the libraries listed below

• MythicC2Profiles / smb

  View on GitHub
  P2P Communications of Named Pipes
  ☆12Dec 11, 2025Updated 2 months ago
• xx0hcd / CobaltStrike-Auto-Keystore

  View on GitHub
  Automate Cobalt Strike keystore file for Teamserver SSL.
  ☆11Feb 1, 2022Updated 4 years ago
• killvxk / TitanLdr_for_memory

  View on GitHub
  ☆14Mar 30, 2022Updated 3 years ago
• ricardojoserf / BOF_Files

  View on GitHub
  Repository to gather the BOF files I will be developing
  ☆11Oct 1, 2024Updated last year
• Daniel-Lobo / AhkHook

  View on GitHub
  ☆13Jun 22, 2017Updated 8 years ago
• 0xHossam / InviGuard

  View on GitHub
  Basic network sec tool for real-time threat detection and C2 communication prevention. Features 70+ detection modules, IOC integration, c…
  ☆16Jun 11, 2024Updated last year
• Hagrid29 / BOF-RemoteRegSave

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses RegConnectRegistryA + RegOpenKeyExA API to dump registry hives on remote computer
  ☆17Mar 4, 2023Updated 2 years ago
• hiatus / NtGate

  View on GitHub
  Transparently call NTAPI via Halo's Gate with indirect syscalls.
  ☆15Apr 26, 2024Updated last year
• 0xflagplz / Xll-Payload-Generator

  View on GitHub
  Excel Add In Payload Generator
  ☆14Oct 9, 2023Updated 2 years ago
• AmirHoseinTangsiriNET / EventLogSilencer

  View on GitHub
  EventLogSilencer is a PowerShell script designed for disable Windows Event Logging
  ☆18Oct 28, 2023Updated 2 years ago
• dmcxblue / SharpHIBP

  View on GitHub
  A C# Tool to gather information about email breaches
  ☆16Dec 21, 2023Updated 2 years ago
• S12cybersecurity / ETWEvasionToolkit

  View on GitHub
  Toolkit of Projects to attack and evade Event Trace for Windows
  ☆26Aug 28, 2025Updated 5 months ago
• MaorSabag / HollowMask

  View on GitHub
  Just another Process Injection using Process Hollowing technique.
  ☆19Sep 18, 2023Updated 2 years ago
• Und3rf10w / CobaltStrikeBOFs

  View on GitHub
  Beacon Object Files used for Cobalt Strike
  ☆19Jul 18, 2023Updated 2 years ago
• SilvestriF3 / Passworld

  View on GitHub
  Passworld is a fully customizable wordlist generator
  ☆16Sep 13, 2024Updated last year
• andrecrafts / Dynamic-HTTP-Payload-Stager

  View on GitHub
  A dynamic HTTP/S stager that lets one shellcode loader be reused for different encrypted payloads - no rebuilds.
  ☆19Oct 1, 2025Updated 4 months ago
• amartinsec / MS-URI-Handlers

  View on GitHub
  ☆21Oct 19, 2023Updated 2 years ago
• JetP1ane / Artemis

  View on GitHub
  Artemis - C++ Hell's Gate Syscall Implementation
  ☆34Aug 16, 2023Updated 2 years ago
• Octoberfest7 / JumpSession_BOF

  View on GitHub
  Beacon Object File allowing creation of Beacons in different sessions.
  ☆82May 23, 2022Updated 3 years ago
• threatexpress / cobaltstrike_payload_generator

  View on GitHub
  Quickly generate every payload type for each listener and optionally host via HTTP.
  ☆22Aug 23, 2021Updated 4 years ago
• Orange-Cyberdefense / EDRSnowblast

  View on GitHub
  This project is an EDRSandblast fork, adding some features and custom pieces of code.
  ☆25Sep 29, 2023Updated 2 years ago
• outflanknl / Training-MSOfficeOffensiveTradecraft

  View on GitHub
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆52May 16, 2024Updated last year
• pracsec / AmsiScanner

  View on GitHub
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆66Oct 17, 2023Updated 2 years ago
• a7t0fwa7 / SymProcSleuth

  View on GitHub
  A pure C version of SymProcAddress
  ☆30Mar 17, 2024Updated last year
• V3ded / ToolDump-v1

  View on GitHub
  Some of my custom "tools".
  ☆28Feb 21, 2022Updated 3 years ago
• nick-frischkorn / SuspendEventLogBOF

  View on GitHub
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆29Jun 17, 2022Updated 3 years ago
• 0xHossam / APT-Attack-Simulation

  View on GitHub
  Projected developed for fun only that simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persist…
  ☆61May 3, 2024Updated last year
• Quasar-Continuation / Cosmali

  View on GitHub
  ☆27Oct 27, 2025Updated 3 months ago
• xalicex / Get-DLL-and-Function-Addresses

  View on GitHub
  GetModuleHandle (via PEB) and GetProcAddress (via EAT) like
  ☆32Feb 7, 2022Updated 4 years ago
• nopbrick / SeeProxy

  View on GitHub
  Golang reverse proxy with CobaltStrike malleable profile validation.
  ☆109Jan 19, 2023Updated 3 years ago
• 0xNinjaCyclone / IATUnhooker

  View on GitHub
  IAT Unhooking proof-of-concept
  ☆34Apr 7, 2024Updated last year
• anvilsecure / nosymonkey

  View on GitHub
  API hooking and code injection made easy!
  ☆40Aug 22, 2023Updated 2 years ago
• Helixo32 / GetSystem-LCI

  View on GitHub
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆35Nov 24, 2024Updated last year
• peiga / DumpThatLSASS

  View on GitHub
  Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation
  ☆31Sep 24, 2022Updated 3 years ago
• Apr4h / HarvestBrowserPasswords

  View on GitHub
  Tool for extracting credentials locally stored by web browsers
  ☆37Jun 25, 2022Updated 3 years ago
• seahop / titan

  View on GitHub
  Titan: A generic user defined reflective DLL for Cobalt Strike
  ☆85Nov 20, 2022Updated 3 years ago
• Octoberfest7 / lnk_generator

  View on GitHub
  Small project to facilitate creation of .lnk payloads
  ☆76Nov 18, 2022Updated 3 years ago
• dmcxblue / Red-Team-Guide

  View on GitHub
  A small red team course
  ☆40Jun 6, 2023Updated 2 years ago
• fanbyprinciple / bin2shellcode

  View on GitHub
  .bin file to shellcode convertor
  ☆39Jul 5, 2024Updated last year