CobaltStrikeScan
Beacon scanner
A tool for detecting and parsing CobaltStrike beacon configuration from files or process memory.
Scan files or process memory for CobaltStrike beacons and parse their configuration
900 stars
27 watching
116 forks
Language: C#
last commit: over 3 years ago
Linked from 2 awesome lists
fabacab/awesome-cybersecurity-blueteam
uhub/awesome-c-sharpRelated projects:
| Repository | Description | Stars |
|---|---|---|
 3lp4tr0n/beaconhunter | A tool for detecting and responding to potential Cobalt Strike beacons using Extended Trace Record (ETW) tracing | 481 |
 ccob/beaconeye | A tool designed to detect and monitor malicious beacon activity from CobaltStrike, providing insights into operator command output. | 885 |
 akkuman/evileye | A tool used to detect and analyze malicious beacon activity in memory using Go programming language | 149 |
 strozfriedberg/cobaltstrike-config-extractor | A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. | 145 |
 sentinel-one/cobaltstrikeparser | Deciphers CobaltStrike Beacon configurations from various formats. | 1,022 |
 te-k/cobaltstrike | Detects and analyzes Cobalt Strike beacons by analyzing HTTP responses and extracting configuration information. | 262 |
 wafinfo/cobaltstrike | A plugin for Cobalt Strike that automates various tasks such as domain lookup, information gathering, and internal network scanning. | 180 |
 splunk/melting-cobalt | Tool to hunt and mine Cobalt Strike beacons from internet-connected services | 164 |
 z3ratu1/geacon_plus | A Go implementation of a CobaltStrike beacon with support for multiple platforms and various communication protocols | 394 |
 cobalt-strike/beacon_health_check | An aggressor script that tracks the health status of beacons based on their note field | 138 |
 romanemelyanov/cobaltstrikeforensic | Toolset to analyze and research malware and Cobalt Strike beacon behavior | 206 |
 pwn1sher/cs-bofs | A collection of compiled beacon object files from the CobaltStrike platform. | 99 |
 b1tg/cobaltstrike-beacon-rust | A Cobalt Strike beacon implementation in Rust for creating malicious network connections | 177 |
 fox-it/cobaltstrike-beacon-data | Historical metadata of Cobalt Strike Beacon attacks | 122 |
 eremit4/cs-discovery | Detects malicious servers in network traffic by analyzing encoded byte patterns | 20 |