Evasion kit for Cobalt Strike
☆395Mar 5, 2026Updated 2 weeks ago
Alternatives and similar repositories for Crystal-Kit
Users that are interested in Crystal-Kit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Cobalt Strike BOF for evasive .NET assembly execution☆309Mar 31, 2025Updated 11 months ago
- BOF with Synthetic Stackframe☆235Oct 30, 2025Updated 4 months ago
- Sleep obfuscation☆271Dec 13, 2024Updated last year
- Shellcode loader☆101Nov 24, 2024Updated last year
- Caddy v2 module to filter requests based on C2 profiles☆46Apr 24, 2025Updated 11 months ago
- Static Encrypt is an crate that encrypts string literals at compile time and only decrypted at runtime when needed.☆58Jan 17, 2026Updated 2 months ago
- Python based tool for generating Shellcode from PIC C☆43Nov 6, 2025Updated 4 months ago
- Crystal Palace library for proxying Nt API calls via the Threadpool☆101Oct 18, 2025Updated 5 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆57Dec 4, 2025Updated 3 months ago
- LLMON 🍋 - The World's First Web Adversarial AI Firewall☆40Jan 3, 2026Updated 2 months ago
- Yet another obfuscated payload generator written in Rust!☆13Feb 9, 2023Updated 3 years ago
- Reaping treasures from strings in remote processes memory☆285Feb 8, 2025Updated last year
- abusing windows toast notifications for fun and user manipulation☆57Updated this week
- Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames☆154Nov 23, 2025Updated 4 months ago
- ☆55May 31, 2025Updated 9 months ago
- Dynamic shellcode loader with sophisticated evasion capabilities☆289Oct 1, 2025Updated 5 months ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆46Aug 13, 2025Updated 7 months ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆346Nov 19, 2024Updated last year
- Stealthily inject shellcode into an executable☆453Oct 19, 2025Updated 5 months ago
- Beacon Object File for Cobalt Strike that executes .NET assemblies in beacon with evasion techniques.☆186Dec 23, 2025Updated 3 months ago
- Syscall Shellcode Loader (Work in Progress)☆1,259May 8, 2024Updated last year
- A BOF that's a BOF Loader and more☆200Jan 17, 2026Updated 2 months ago
- Bypass YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellcode sequences.☆53Oct 2, 2025Updated 5 months ago
- ForsHops☆152Mar 25, 2025Updated 11 months ago
- A Windows tool that converts LDIF files to BloodHound CE☆31Dec 20, 2025Updated 3 months ago
- ☆139Jan 16, 2025Updated last year
- This is the tool to dump the LSASS process on modern Windows 11☆563Nov 1, 2025Updated 4 months ago
- A BOF that runs unmanaged PEs inline☆685Oct 23, 2024Updated last year
- RunPE implementation with multiple evasive techniques (2)☆278Sep 25, 2025Updated 5 months ago
- Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems.☆642Oct 27, 2025Updated 4 months ago
- Cobalt Strike UDRL for memory scanner evasion.☆1,008Jun 4, 2024Updated last year
- A BOF to create a scheduled task using a COM object.☆16Dec 3, 2024Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆189Jan 17, 2026Updated 2 months ago
- 重构Beacon☆165Aug 19, 2024Updated last year
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos…☆43Jan 15, 2026Updated 2 months ago
- Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …☆26Jun 11, 2025Updated 9 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆124Jan 17, 2026Updated 2 months ago
- Awesome MalDev Links☆52Updated this week
- shellcode transformation tool for YARA evasion☆58Dec 17, 2025Updated 3 months ago