rasta-mouse / SharpC2Links
Command and Control Framework written in C#
☆407Updated last year
Alternatives and similar repositories for SharpC2
Users that are interested in SharpC2 are comparing it to the libraries listed below
Sorting:
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆671Updated last year
- A .NET Runtime for Cobalt Strike's Beacon Object Files☆727Updated 9 months ago
- UAC Bypass By Abusing Kerberos Tickets☆496Updated last year
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆440Updated 2 weeks ago
- Collection of remote authentication triggers in C#☆485Updated last year
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆366Updated last year
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆546Updated last year
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆607Updated 2 weeks ago
- Creating a repository with all public Beacon Object Files (BoFs)☆502Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆485Updated 3 weeks ago
- COM Hijacking VOODOO☆298Updated 2 months ago
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.☆454Updated last year
- Collection of UAC Bypass Techniques Weaponized as BOFs☆512Updated last year
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆413Updated 11 months ago
- Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)☆632Updated 3 weeks ago
- ☆332Updated 3 months ago
- Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists☆442Updated 2 years ago
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆367Updated 3 years ago
- Terminate AV/EDR Processes using kernel driver☆344Updated last year
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆558Updated 5 months ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆378Updated 10 months ago
- Persistence by writing/reading shellcode from Event Log☆373Updated 3 years ago
- A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk☆454Updated 10 months ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆460Updated 2 years ago
- Kill AV/EDR leveraging BYOVD attack☆359Updated last year
- A BOF that runs unmanaged PEs inline☆603Updated 7 months ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆215Updated 2 months ago
- This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and down…☆247Updated 2 years ago
- Protected Process Dumper Tool☆549Updated last year
- PIC lsass dumper using cloned handles☆586Updated 2 years ago