Beacon_re
Beacon evasion technique
A project that explores the use of beacon strikes in cobalt strike beacons to evade detection
86 stars
4 watching
18 forks
last commit: over 2 years ago Related projects:
Repository | Description | Stars |
---|---|---|
kyleavery/aceldr | A Cobalt Strike memory scanner evasion technique using code obfuscation and encryption to evade detection. | 887 |
3lp4tr0n/beaconhunter | A tool for detecting and responding to potential Cobalt Strike beacons using Extended Trace Record (ETW) tracing | 482 |
wbglil/cs_decrypt | A collection of Python scripts for decrypting and processing encrypted data related to Cobalt Strike security vulnerability analysis | 140 |
gnxbr/fully-undetectable-techniques | A collection of low-level techniques and tools to evade detection in software | 368 |
binarydefense/beacon-fronting | A command line tool to simulate network beacon patterns and domain fronting for testing detection systems | 66 |
0xsp-srd/mortar | A toolset designed to evade detection by security products and execute malware safely | 1,421 |
rkervella/carbonmonoxide | A toolkit for evading endpoint detection and response (EDR) by combining techniques to spoof system properties and inject malicious code. | 24 |
passthehashbrowns/bofmask | A proof-of-concept project demonstrating how to mask Beacon's payload execution in Cobalt Strike while executing a user-provided BOF. | 110 |
ed1s0nz/cool | A tool designed to bypass antivirus software and evade detection. | 691 |
noone-hub/beacon.dll | Reverse engineering and modification of beacon.dll for 64-bit compatibility | 137 |
akkuman/evileye | A tool used to detect and analyze malicious beacon activity in memory using Go programming language | 148 |
ccob/beaconeye | A tool designed to detect and monitor malicious beacon activity from CobaltStrike, providing insights into operator command output. | 892 |
b1tg/cobaltstrike-beacon-rust | A Cobalt Strike beacon implementation in Rust for creating malicious network connections | 180 |
epi052/rustdsplit | Re-implements a method to bypass signature-based AV detection by splitting a file into two halves and modifying one byte in each half to evade detection. | 35 |
cobalt-strike/beacon_health_check | An aggressor script that tracks the health status of beacons based on their note field | 137 |