yanghaoi / CobaltStrike_CNALinks

使用多种WinAPI进行权限维持的CobaltStrike脚本，包含API设置系统服务，设置计划任务，管理用户等。

☆555

Alternatives and similar repositories for CobaltStrike_CNA

Users that are interested in CobaltStrike_CNA are comparing it to the libraries listed below

Sorting:

0x727 / SchTask_0x727
创建隐藏计划任务，权限维持，Bypass AV
☆553Updated 4 years ago
SecNN / Bypass_AV
Bypass_AV msf免杀，ShellCode免杀加载器，免杀shellcode执行程序，360&火绒&Windows Defender
☆228Updated 3 years ago
huaigu4ng / SysWhispers3WinHttp
Syscall免杀
☆511Updated last year
testxxxzzz / geacon_pro
重构了Cobaltstrike Beacon，行为对国内主流杀软免杀，支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.
☆336Updated 3 years ago
LDrakura / Remote_ShellcodeLoader
远程shellcode加载&权限维持+小功能
☆301Updated last year
seventeenman / CallBackDump
dump lsass进程工具
☆561Updated 2 years ago
TryGOTry / DogCs4.4
cs4.4修改去特征狗狗版(美化ui,去除特征,自带bypass核晶截图等..)
☆575Updated 2 years ago
7BitsTeam / EDR-Bypass-demo
Some demos to bypass EDRs or AVs by 78itsT3@m
☆359Updated 3 years ago
lintstar / CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
☆450Updated last year
HZzz2 / go-shellcode-loader
GO免杀shellcode加载器混淆AES加密
☆257Updated 3 years ago
jiushill / csplugin
自己开的cs插件
☆248Updated 2 years ago
Peithon / JustC2file
Burp插件，Malleable C2 Profiles生成器；可以通过Burp代理选中请求，生成Cobalt Strike的profile文件(CSprofile)
☆291Updated 4 years ago
lzzbb / Adinfo
域信息收集工具
☆411Updated 3 years ago
pureqh / bypassAV
免杀shellcode加载器
☆460Updated 4 years ago
Ciyfly / microwaveo
将dll exe 等转成shellcode 最后输出exe 可定制加载器模板支持白文件的捆绑 shellcode 加密
☆367Updated 3 years ago
wjlab / Darksteel
域内自动化信息搜集利用工具
☆463Updated 2 years ago
0671 / RabR
Redis-Attack By Replication (通过主从复制攻击Redis)
☆353Updated 3 years ago
burpheart / CVE-2022-39197-patch
CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.
☆319Updated 3 years ago
crisprss / Shellcode_Memory_Loader
基于Golang实现的Shellcode内存加载器,共实现3中内存加载shellcode方式,UUID加载,MAC加载和IPv4加载,目前能过主流杀软(包括Windows Defender)
☆253Updated 4 years ago
iframepm / FuckAV
python写的一款免杀工具（shellcode加载器）BypassAV，国内杀软全过（windows denfend）2021-9-13
☆286Updated last year
Rvn0xsy / useful-code
useful-code
☆193Updated last year
Daybr4ak / C2ReverseProxy
一款可以在不出网的环境下进行反向代理及cs上线的工具
☆492Updated 2 years ago
luckyfuture0177 / ReZeroBypassAV
从零开始学免杀
☆438Updated 3 years ago
ffctf / BypassAv-py
免杀某60、火绒、pythonShellcode-loader
☆55Updated 2 years ago
z1un / Z1-AggressorScripts
适用于Cobalt Strike的插件
☆562Updated 4 years ago
snnxyss / In-Swor
永久免杀加载器移步另一个项目https://github.com/snnxyss/new_in_swor 一个简单内网渗透工具免杀目前免杀fscan,mimikatz,frp,elevationstation,bypassuac, 一键killAV 。请使用In-Swor…
☆390Updated 2 years ago
xiao-zhu-zhu / noterce
一种另辟蹊径的免杀执行系统命令的木马
☆493Updated 2 years ago
crisprss / BypassUserAdd
通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
☆344Updated 3 years ago
Yihsiwei / GoFileBinder
golang免杀捆绑器
☆550Updated 3 years ago
RowTeam / SharpExchangeKing
Exchange 服务器安全性的辅助测试工具
☆329Updated 2 years ago