There are no reviews yet. Be the first to send feedback to the community and the maintainers!
Burp2Malleable
Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profilesScreenshotBOF
An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.WindowSpy
WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.maldev-links
My collection of malware dev linkscobaltstrike-headless
Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.HavocNotion
A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally safe or stable, built as a PoC to showcase Havoc C2's modular C2 channel interface.PyHmmm
Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog post as a tutorial sampleBusySleepBeacon
This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built in Sleep() call. Most of the structure e.g. Sleep hook, shellcode exec etc. are taken from mgeeky's https://github.com/mgeeky/ShellcodeFluctuation.evasion-adventures-files
Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"CobaltStrikeSoundBoard
cobaltstrike-sleepmask-yara
Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-strike/sleep-mask-kit-iocsSharpAwareness
Light and more OPSEC friendly way for red teamers to gain quick situational awareness of both the host and the user.beacon_notify_discordhook
Probably the easiest way to setup new beacon notifications in Cobalt Strikegoautodial-rce-exploit
Pops a shell on a goautodial serverCodeXTF2
Simulated-User
CodeXTF2.github.io
James-Server-RCE
Improved version of the james server RCE. Spawns a reverse shell that can bypass rbash ;)codexs-useful-utils
Misc utils I made here and there, collected in one placeLove Open Source and this site? Check out how you can help us