stairwell-inc / cobalt-strike-stager-parserView external linksLinks
☆36Jan 11, 2023Updated 3 years ago
Alternatives and similar repositories for cobalt-strike-stager-parser
Users that are interested in cobalt-strike-stager-parser are comparing it to the libraries listed below
Sorting:
- ☆18Mar 26, 2024Updated last year
- ☆23Mar 17, 2024Updated last year
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆78Jan 9, 2024Updated 2 years ago
- Malformed Access Log to CSV - Convert Web Server Access Logs to CSV☆18Sep 3, 2024Updated last year
- Cobalt Strike Beacon configuration extractor and parser.☆160Oct 30, 2025Updated 3 months ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- Reverse Engineering and Debugging Malware☆32Feb 27, 2023Updated 2 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Oct 28, 2022Updated 3 years ago
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆185Jun 23, 2025Updated 7 months ago
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- Here are some tools I developed to help analyze malware☆11Nov 8, 2023Updated 2 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- ☆10Dec 24, 2022Updated 3 years ago
- Provides a multi-platform Graphical User Interface for hashlookup☆12Jul 12, 2024Updated last year
- Code and yara rules to detect and analyze Cobalt Strike☆273May 5, 2021Updated 4 years ago
- Finding ClickFix and FakeCAPTCHA like it's 1999☆121Updated this week
- ESXi Cyber Security Incident Response Script☆25Sep 4, 2024Updated last year
- Ghidra script which fully parses COFF files☆12Oct 18, 2024Updated last year
- ☆13Nov 10, 2020Updated 5 years ago
- x64 Windows package of the shellcode2exe tool☆14Nov 23, 2020Updated 5 years ago
- ☆11Mar 12, 2021Updated 4 years ago
- ☆12Jun 29, 2021Updated 4 years ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.☆116Jan 26, 2022Updated 4 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago
- Cobalt Strike Get clipboard plugin☆15Aug 11, 2023Updated 2 years ago
- Plugins for the Viper Framework☆14Sep 21, 2019Updated 6 years ago
- Minimal Indicator Storage System☆11Feb 8, 2021Updated 5 years ago
- Currently proof-of-concept☆17Dec 17, 2021Updated 4 years ago
- A highly available AWS deployment of the Threat Intelligence platform, OpenCTI using Terraform. Native AWS resources are used where feasi…☆38Apr 23, 2023Updated 2 years ago
- A console debugger using DbgX and Terminal.Gui☆30Oct 12, 2022Updated 3 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆168Oct 14, 2022Updated 3 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- ☆92Jul 30, 2025Updated 6 months ago
- Convert an IP into Alternative / Obfuscated versions of itself☆14Aug 13, 2022Updated 3 years ago
- Script to pull newly-registered domains and check for similarity against a provided word list.☆13Aug 2, 2020Updated 5 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Jul 7, 2022Updated 3 years ago
- ☆34Nov 11, 2025Updated 3 months ago
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆301Dec 27, 2023Updated 2 years ago