Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons

.NET, PE, & Raw Shellcode Packer/Loader Written in Nim

AntiAV shellcode loader

Penetration Testing

Syscall免杀

Loader that loads shellcode from UUID's

Cobalt Strike random C2 Profile generator

Cobalt Strike Malleable C2 Design and Reference Guide

暴力破解cs的teamserver密码脚本

C2-下一代RAT

C2 Powershell Command & Control Framework with BuiltIn Commands

通过Go语言实现的一款基于gRPC的远控木马。

破解CS4.0

The Minimalistic x86/x64 API Hooking Library for Windows

A demo of the relevant blog post: https://www.arashparsa.com/hook-heaps-and-live-free/

Scan files or process memory for CobaltStrike beacons and parse their configuration

Cobalt Strike UDRL for memory scanner evasion.

A header-only DLL proxy stub generation library built with C++20.

CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能

Practice Go programming and implement CobaltStrike's Beacon in Go

List of Awesome CobaltStrike Resources

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.

A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl

A simple BOF that frees UDRLs

This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions