splunk/melting-cobalt external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

splunk/melting-cobalt

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/splunk/melting-cobalt)

Close

splunk / melting-cobaltView on GitHubMore

• External links
• Readme badge

A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object

☆168Oct 14, 2022Updated 3 years ago

Alternatives and similar repositories for melting-cobalt

Users that are interested in melting-cobalt are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• aaronst / talks

  View on GitHub
  Presentation materials for talks I've given.
  ☆20Oct 14, 2019Updated 6 years ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence

  View on GitHub
  Defences against Cobalt Strike
  ☆1,298Jul 14, 2022Updated 3 years ago
• shabarkin / pointer

  View on GitHub
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Apr 12, 2022Updated 4 years ago
• stairwell-inc / cobalt-strike-stager-parser

  View on GitHub
  ☆36Jan 11, 2023Updated 3 years ago
• mnrkbys / ma2tl

  View on GitHub
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆93Sep 7, 2023Updated 2 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• Te-k / cobaltstrike

  View on GitHub
  Code and yara rules to detect and analyze Cobalt Strike
  ☆273May 5, 2021Updated 4 years ago
• jklepsercyber / defender-detectionhistory-parser

  View on GitHub
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆118Jan 26, 2022Updated 4 years ago
• fox-it / cobaltstrike-beacon-data

  View on GitHub
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆133Mar 28, 2022Updated 4 years ago
• 3c7 / common-osint-model

  View on GitHub
  Converting data from services like Censys and Shodan to a common data model
  ☆52Updated this week
• splunk / attack_data

  View on GitHub
  A repository of curated datasets from various attacks
  ☆755Mar 30, 2026Updated 2 weeks ago
• nccgroup / mimikatz-detector-busylight

  View on GitHub
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆21Sep 6, 2022Updated 3 years ago
• Cyb3r-Monk / RITA-J

  View on GitHub
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆209Jul 21, 2022Updated 3 years ago
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 3 years ago
• Apr4h / CobaltStrikeScan

  View on GitHub
  Scan files or process memory for CobaltStrike beacons and parse their configuration
  ☆920Aug 19, 2021Updated 4 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• lasq88 / socgholish_finder

  View on GitHub
  ☆14Mar 9, 2023Updated 3 years ago
• hackjalstead / IRCP

  View on GitHub
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Jan 31, 2022Updated 4 years ago
• frkngksl / UnlinkDLL

  View on GitHub
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆63Apr 4, 2026Updated last week
• williamknows / SharpHound3

  View on GitHub
  C# Data Collector for the BloodHound Project, Version 3
  ☆37Dec 28, 2021Updated 4 years ago
• Sentinel-One / CobaltStrikeParser

  View on GitHub
  ☆1,133Dec 19, 2023Updated 2 years ago
• daveherrald / SA_plaso-app-for-splunk

  View on GitHub
  ☆16Apr 16, 2017Updated 8 years ago
• thefLink / Hunt-Sleeping-Beacons

  View on GitHub
  Aims to identify sleeping beacons
  ☆664Jan 25, 2026Updated 2 months ago
• theflakes / reg_hunter

  View on GitHub
  Blueteam operational triage registry hunting/forensic tool.
  ☆149Sep 2, 2025Updated 7 months ago
• zeek / trace-summary

  View on GitHub
  Generates network traffic summaries.
  ☆23Updated this week
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• 3lp4tr0n / BeaconHunter

  View on GitHub
  Detect and respond to Cobalt Strike beacons using ETW.
  ☆515Jul 15, 2022Updated 3 years ago
• dwmetz / CyberPipe

  View on GitHub
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆340Dec 3, 2025Updated 4 months ago
• DFIRKuiper / Hoarder

  View on GitHub
  ☆21Aug 31, 2022Updated 3 years ago
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆24Sep 28, 2022Updated 3 years ago
• blockadeio / cloud_node

  View on GitHub
  Python-based cloud node for local use
  ☆11Mar 7, 2018Updated 8 years ago
• drb-ra / C2IntelFeeds

  View on GitHub
  Automatically created C2 Feeds
  ☆671Updated this week
• pmelson / narc

  View on GitHub
  ☆54Sep 6, 2020Updated 5 years ago
• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆96Mar 8, 2023Updated 3 years ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,277Jan 21, 2026Updated 2 months ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• xforcered / elfpack

  View on GitHub
  ELF Sectional docking payload injector system
  ☆21Jun 28, 2022Updated 3 years ago
• Recruit-CSIRT / macApfsMounter

  View on GitHub
  A small tool to easily mount APFS image on macOS for forensics.
  ☆16Jul 30, 2020Updated 5 years ago
• whickey-r7 / grab_beacon_config

  View on GitHub
  ☆451Aug 4, 2021Updated 4 years ago
• infosec-intern / vscode-yara

  View on GitHub
  VSCode extension for the YARA pattern matching language
  ☆63Jan 10, 2024Updated 2 years ago
• The-DFIR-Report / Sigma-Rules

  View on GitHub
  Rules generated from our investigations.
  ☆207Jun 17, 2025Updated 9 months ago
• Defenders-Guide / TheDefendersGuide

  View on GitHub
  The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
  ☆158Jun 15, 2023Updated 2 years ago
• cedowens / C2-JARM

  View on GitHub
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆142Apr 20, 2023Updated 2 years ago