splunk/melting-cobalt external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

splunk/melting-cobalt

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/splunk/melting-cobalt)

Close

splunk / melting-cobaltView on GitHubMore

• External links
• Readme badge

A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object

☆168Oct 14, 2022Updated 3 years ago

Alternatives and similar repositories for melting-cobalt

Users that are interested in melting-cobalt are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• aaronst / talks

  View on GitHub
  Presentation materials for talks I've given.
  ☆20Oct 14, 2019Updated 6 years ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence

  View on GitHub
  Defences against Cobalt Strike
  ☆1,303Jul 14, 2022Updated 3 years ago
• shabarkin / pointer

  View on GitHub
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Apr 12, 2022Updated 4 years ago
• stairwell-inc / cobalt-strike-stager-parser

  View on GitHub
  ☆36Jan 11, 2023Updated 3 years ago
• mnrkbys / ma2tl

  View on GitHub
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆94Sep 7, 2023Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• Te-k / cobaltstrike

  View on GitHub
  Code and yara rules to detect and analyze Cobalt Strike
  ☆273May 5, 2021Updated 5 years ago
• jklepsercyber / defender-detectionhistory-parser

  View on GitHub
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆118Jan 26, 2022Updated 4 years ago
• fox-it / cobaltstrike-beacon-data

  View on GitHub
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆136Mar 28, 2022Updated 4 years ago
• 3c7 / common-osint-model

  View on GitHub
  Converting data from services like Censys and Shodan to a common data model
  ☆52Jun 5, 2026Updated last week
• splunk / attack_data

  View on GitHub
  A repository of curated datasets from various attacks
  ☆776Updated this week
• nccgroup / mimikatz-detector-busylight

  View on GitHub
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆21Sep 6, 2022Updated 3 years ago
• Cyb3r-Monk / RITA-J

  View on GitHub
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆210Jul 21, 2022Updated 3 years ago
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 4 years ago
• Apr4h / CobaltStrikeScan

  View on GitHub
  Scan files or process memory for CobaltStrike beacons and parse their configuration
  ☆920Aug 19, 2021Updated 4 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• lasq88 / socgholish_finder

  View on GitHub
  ☆14Mar 9, 2023Updated 3 years ago
• hackjalstead / IRCP

  View on GitHub
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Jan 31, 2022Updated 4 years ago
• frkngksl / UnlinkDLL

  View on GitHub
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆64Apr 4, 2026Updated 2 months ago
• williamknows / SharpHound3

  View on GitHub
  C# Data Collector for the BloodHound Project, Version 3
  ☆35Dec 28, 2021Updated 4 years ago
• Sentinel-One / CobaltStrikeParser

  View on GitHub
  ☆1,139Dec 19, 2023Updated 2 years ago
• daveherrald / SA_plaso-app-for-splunk

  View on GitHub
  ☆16Apr 16, 2017Updated 9 years ago
• thefLink / Hunt-Sleeping-Beacons

  View on GitHub
  Aims to identify sleeping beacons
  ☆669Jan 25, 2026Updated 4 months ago
• drb-ra / C2IntelFeeds

  View on GitHub
  Automatically created C2 Feeds
  ☆721Updated this week
• theflakes / reg_hunter

  View on GitHub
  Blueteam operational triage registry hunting/forensic tool.
  ☆148Sep 2, 2025Updated 9 months ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• zeek / trace-summary

  View on GitHub
  Generates network traffic summaries.
  ☆24Apr 8, 2026Updated 2 months ago
• 3lp4tr0n / BeaconHunter

  View on GitHub
  Detect and respond to Cobalt Strike beacons using ETW.
  ☆516Jul 15, 2022Updated 3 years ago
• dwmetz / CyberPipe

  View on GitHub
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆340Dec 3, 2025Updated 6 months ago
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆22Sep 28, 2022Updated 3 years ago
• DFIRKuiper / Hoarder

  View on GitHub
  ☆22Aug 31, 2022Updated 3 years ago
• blockadeio / cloud_node

  View on GitHub
  Python-based cloud node for local use
  ☆11Mar 7, 2018Updated 8 years ago
• pmelson / narc

  View on GitHub
  ☆54Sep 6, 2020Updated 5 years ago
• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆97Mar 8, 2023Updated 3 years ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,296Jun 2, 2026Updated last week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• xforcered / elfpack

  View on GitHub
  ELF Sectional docking payload injector system
  ☆21Jun 28, 2022Updated 3 years ago
• Recruit-CSIRT / macApfsMounter

  View on GitHub
  A small tool to easily mount APFS image on macOS for forensics.
  ☆17Jul 30, 2020Updated 5 years ago
• whickey-r7 / grab_beacon_config

  View on GitHub
  ☆450Aug 4, 2021Updated 4 years ago
• infosec-intern / vscode-yara

  View on GitHub
  VSCode extension for the YARA pattern matching language
  ☆62Jan 10, 2024Updated 2 years ago
• The-DFIR-Report / Sigma-Rules

  View on GitHub
  Rules generated from our investigations.
  ☆210Jun 17, 2025Updated 11 months ago
• cedowens / C2-JARM

  View on GitHub
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆143Apr 20, 2023Updated 3 years ago
• Defenders-Guide / TheDefendersGuide

  View on GitHub
  The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
  ☆160Jun 15, 2023Updated 2 years ago