CS_mock

Packet simulator

A tool to simulate a Cobalt Strike beacon connection packet by parsing the payload and extracting RSA public key

模拟cobalt strike beacon上线包. Simulation cobalt strike beacon connection packet.

GitHub

78 stars
6 watching
16 forks
Language: Python
last commit: over 2 years ago
cobalt-strikecve-2021-36798cve-2022-39197

Related projects:

Repository Description Stars
riccardoancarani/bofs Utilities for Cobalt Strike's Beacon Object Files to simplify working with shellcode and system processes 112
b1tg/cobaltstrike-beacon-rust A Cobalt Strike beacon implementation in Rust for creating malicious network connections 180
liaorj/cs_fakesubmit A script to simulate a Cobaltstrike connection 130
fox-it/dissect.cobaltstrike Library for dissecting and parsing data related to Cobalt Strike exploits 148
te-k/cobaltstrike Detects and analyzes Cobalt Strike beacons by analyzing HTTP responses and extracting configuration information. 265
strozfriedberg/cobaltstrike-config-extractor A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. 148
darkr4y/geacon A Go-based implementation of CobaltStrike's Beacon protocol for reverse engineering and protocol analysis purposes. 1,159
splunk/melting-cobalt Tool to hunt and mine Cobalt Strike beacons from internet-connected services 164
guervild/bofs Beacon object files for Cobalt Strike 158
boku7/halosgate-ps A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. 95
fox-it/cobaltstrike-beacon-data Historical metadata of Cobalt Strike Beacon attacks 125
cobalt-strike/bof-vs A Beacon Object File Visual Studio template project for creating malicious code executables 145
boku7/spawn A Cobalt Strike Beacon tool that spawns a sacrificial process to execute shellcode, using techniques like Arbitrary Code Guard and PPID spoofing to evade detection. 440
loecho-sec/cobaltstrike_script_wechat_push Automated notifications via WeChat Server酱 for CobaltStrike beacons 44
jamvayne/cobaltstrikedos A Python script to exploit a Cobalt Strike vulnerability and perform a denial of service attack. 103