whickey-r7 / grab_beacon_config
☆444Updated 3 years ago
Related projects: ⓘ
- Code and yara rules to detect and analyze Cobalt Strike☆262Updated 3 years ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆894Updated 3 years ago
- Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons☆365Updated 3 years ago
- ☆1,008Updated 9 months ago
- C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.☆991Updated 2 months ago
- Detect and respond to Cobalt Strike beacons using ETW.☆478Updated 2 years ago
- Hunts out CobaltStrike beacons and logs operator command output☆870Updated 2 weeks ago
- Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.☆608Updated 2 years ago
- Convert Cobalt Strike profiles to modrewrite scripts☆578Updated last year
- ☆613Updated this week
- Cobalt Strike random C2 Profile generator☆618Updated last year
- We developed GRAT2 Command & Control (C2) project for learning purpose.☆411Updated 3 years ago
- Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.…☆749Updated last year
- A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls☆431Updated 2 years ago
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.☆1,020Updated 5 months ago
- Cobalt Strike kit for Persistence☆462Updated 4 years ago
- ☆651Updated 2 years ago
- Cobalt Strike kit for Lateral Movement☆640Updated 4 years ago
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆327Updated last year
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,029Updated last year
- Excel Macro Document Reader/Writer for Red Teamers & Analysts☆513Updated 2 years ago
- .NET Project for Attacking vCenter☆535Updated 2 years ago
- Self-developed tools for Lateral Movement/Code Execution☆685Updated 3 years ago
- Situational Awareness commands implemented using Beacon Object Files☆1,222Updated last week
- Amplify network visibility from multiple POV of other hosts☆291Updated 5 months ago
- Some notes and examples for cobalt strike's functionality☆969Updated 2 years ago
- Scan installed EDRs and AVs on Windows☆554Updated last year
- A repository that maps commonly used attacks using MSRPC protocols to ATT&CK☆305Updated last year
- Automatically created C2 Feeds☆509Updated this week
- ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping …☆864Updated 2 weeks ago