ryhanson/ExternalC2 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ryhanson/ExternalC2

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ryhanson/ExternalC2)

Close

ryhanson / ExternalC2View on GitHubMore

• External links
• Readme badge

A library for integrating communication channels with the Cobalt Strike External C2 server

☆291Nov 23, 2017Updated 8 years ago

Alternatives and similar repositories for ExternalC2

Users that are interested in ExternalC2 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Und3rf10w / external_c2_framework

  View on GitHub
  Python api for usage with cobalt strike's External C2 specification
  ☆240Mar 22, 2023Updated 3 years ago
• SpiderLabs / DoHC2

  View on GitHub
  DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2…
  ☆449Aug 7, 2020Updated 5 years ago
• outflanknl / external_c2

  View on GitHub
  POC for Cobalt Strike external C2
  ☆143Sep 6, 2021Updated 4 years ago
• SpiderLabs / SharpCompile

  View on GitHub
  SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…
  ☆288Aug 7, 2020Updated 5 years ago
• xorrior / raven

  View on GitHub
  CobaltStrike External C2 for Websockets
  ☆196Jul 16, 2019Updated 6 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• bluscreenofjeff / Malleable-C2-Randomizer

  View on GitHub
  A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls
  ☆455Sep 9, 2022Updated 3 years ago
• 001SPARTaN / csfm

  View on GitHub
  Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.
  ☆65Dec 27, 2017Updated 8 years ago
• Und3rf10w / Aggressor-scripts

  View on GitHub
  Aggressor scripts I've made for Cobalt Strike
  ☆415Jul 29, 2023Updated 2 years ago
• xorrior / RemoteRecon

  View on GitHub
  Remote Recon and Collection
  ☆462Nov 23, 2017Updated 8 years ago
• killswitch-GUI / CobaltStrike-ToolKit

  View on GitHub
  Some useful scripts for CobaltStrike
  ☆855Dec 17, 2020Updated 5 years ago
• harleyQu1nn / AggressorScripts

  View on GitHub
  Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
  ☆1,529Jun 30, 2023Updated 2 years ago
• vysecurity / ANGRYPUPPY

  View on GitHub
  Bloodhound Attack Path Automation in CobaltStrike
  ☆326Apr 26, 2020Updated 6 years ago
• 001SPARTaN / aggressor_scripts

  View on GitHub
  A collection of useful scripts for Cobalt Strike
  ☆174Aug 15, 2024Updated last year
• codewhitesec / LethalHTA

  View on GitHub
  Lateral Movement technique using DCOM and HTA
  ☆234Oct 18, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• dcsync / pycobalt

  View on GitHub
  Cobalt Strike Python API
  ☆303Jan 27, 2022Updated 4 years ago
• outflanknl / Excel4-DCOM

  View on GitHub
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆326Mar 26, 2019Updated 7 years ago
• threatexpress / cs2modrewrite

  View on GitHub
  Convert Cobalt Strike profiles to modrewrite scripts
  ☆608Jan 30, 2023Updated 3 years ago
• xorrior / Random-CSharpTools

  View on GitHub
  Collection of CSharp Assemblies focused on Post-Exploitation Capabilities
  ☆232May 30, 2019Updated 7 years ago
• checkymander / Sharp-WMIExec

  View on GitHub
  ☆206May 1, 2020Updated 6 years ago
• n0pe-sled / Apache2-Mod-Rewrite-Setup

  View on GitHub
  Quickly Implement Mod-Rewrite in your infastructure
  ☆88Apr 21, 2017Updated 9 years ago
• mdsecactivebreach / CACTUSTORCH

  View on GitHub
  CACTUSTORCH: Payload Generation for Adversary Simulations
  ☆1,019Jul 3, 2018Updated 7 years ago
• vysecurity / morphHTA

  View on GitHub
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆529Apr 14, 2023Updated 3 years ago
• GreatSCT / GreatSCT

  View on GitHub
  The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…
  ☆1,123Feb 10, 2021Updated 5 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• mdsecactivebreach / Browser-ExternalC2

  View on GitHub
  External C2 Using IE COM Objects
  ☆100Feb 24, 2019Updated 7 years ago
• rasta-mouse / TikiTorch

  View on GitHub
  Process Injection
  ☆768Oct 24, 2021Updated 4 years ago
• stufus / reconerator

  View on GitHub
  C# Targeted Attack Reconnissance Tools
  ☆120Jan 11, 2021Updated 5 years ago
• mdsecactivebreach / SharpShooter

  View on GitHub
  Payload Generation Framework
  ☆1,984Aug 21, 2024Updated last year
• nettitude / Invoke-PowerThIEf

  View on GitHub
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆128Feb 27, 2025Updated last year
• Kevin-Robertson / InveighZero

  View on GitHub
  .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
  ☆817Aug 28, 2022Updated 3 years ago
• 0xbadjuju / Tokenvator

  View on GitHub
  A tool to elevate privilege with Windows Tokens
  ☆1,066Oct 6, 2023Updated 2 years ago
• Mr-Un1k0d3r / MaliciousMacroGenerator

  View on GitHub
  Malicious Macro Generator
  ☆832Apr 17, 2019Updated 7 years ago
• GhostPack / SharpRoast

  View on GitHub
  DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.
  ☆251Sep 25, 2018Updated 7 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• taherio / redi

  View on GitHub
  Automated script for setting up CobaltStrike redirectors (nginx reverse proxy, letsencrypt)
  ☆143Oct 31, 2017Updated 8 years ago
• GoFetchAD / GoFetch

  View on GitHub
  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.
  ☆636Jun 20, 2017Updated 9 years ago
• nettitude / PoshC2_Old

  View on GitHub
  Powershell C2 Server and Implants
  ☆576Nov 11, 2019Updated 6 years ago
• bluscreenofjeff / AggressorScripts

  View on GitHub
  Aggressor scripts for use with Cobalt Strike 3.0+
  ☆896Sep 9, 2022Updated 3 years ago
• outflanknl / Recon-AD

  View on GitHub
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆332Oct 20, 2019Updated 6 years ago
• RedSiege / AggressorAssessor

  View on GitHub
  Aggressor scripts for phases of a pen test or red team assessment
  ☆183Aug 13, 2024Updated last year
• cobbr / SharpGen

  View on GitHub
  SharpGen is a .NET Core console application that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framework console applica…
  ☆302Apr 23, 2021Updated 5 years ago