CS_mock
Packet simulator
A tool to simulate a Cobalt Strike beacon connection packet by parsing the payload and extracting RSA public key
模拟cobalt strike beacon上线包. Simulation cobalt strike beacon connection packet.
78 stars
6 watching
16 forks
Language: Python
last commit: over 2 years ago cobalt-strikecve-2021-36798cve-2022-39197
Related projects:
Repository | Description | Stars |
---|---|---|
riccardoancarani/bofs | Utilities for Cobalt Strike's Beacon Object Files to simplify working with shellcode and system processes | 112 |
b1tg/cobaltstrike-beacon-rust | A Cobalt Strike beacon implementation in Rust for creating malicious network connections | 180 |
liaorj/cs_fakesubmit | A script to simulate a Cobaltstrike connection | 130 |
fox-it/dissect.cobaltstrike | Library for dissecting and parsing data related to Cobalt Strike exploits | 148 |
te-k/cobaltstrike | Detects and analyzes Cobalt Strike beacons by analyzing HTTP responses and extracting configuration information. | 265 |
strozfriedberg/cobaltstrike-config-extractor | A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. | 148 |
darkr4y/geacon | A Go-based implementation of CobaltStrike's Beacon protocol for reverse engineering and protocol analysis purposes. | 1,159 |
splunk/melting-cobalt | Tool to hunt and mine Cobalt Strike beacons from internet-connected services | 164 |
guervild/bofs | Beacon object files for Cobalt Strike | 158 |
boku7/halosgate-ps | A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. | 95 |
fox-it/cobaltstrike-beacon-data | Historical metadata of Cobalt Strike Beacon attacks | 125 |
cobalt-strike/bof-vs | A Beacon Object File Visual Studio template project for creating malicious code executables | 145 |
boku7/spawn | A Cobalt Strike Beacon tool that spawns a sacrificial process to execute shellcode, using techniques like Arbitrary Code Guard and PPID spoofing to evade detection. | 440 |
loecho-sec/cobaltstrike_script_wechat_push | Automated notifications via WeChat Server酱 for CobaltStrike beacons | 44 |
jamvayne/cobaltstrikedos | A Python script to exploit a Cobalt Strike vulnerability and perform a denial of service attack. | 103 |