BeaconEye
Beacon detector
A tool designed to detect and monitor malicious beacon activity from CobaltStrike, providing insights into operator command output.
Hunts out CobaltStrike beacons and logs operator command output
885 stars
16 watching
105 forks
Language: C#
last commit: 3 months ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 3lp4tr0n/beaconhunter | A tool for detecting and responding to potential Cobalt Strike beacons using Extended Trace Record (ETW) tracing | 481 |
 apr4h/cobaltstrikescan | A tool for detecting and parsing CobaltStrike beacon configuration from files or process memory. | 900 |
 akkuman/evileye | A tool used to detect and analyze malicious beacon activity in memory using Go programming language | 149 |
 sentinel-one/cobaltstrikeparser | Deciphers CobaltStrike Beacon configurations from various formats. | 1,022 |
 te-k/cobaltstrike | Detects and analyzes Cobalt Strike beacons by analyzing HTTP responses and extracting configuration information. | 262 |
 nccgroup/pybeacon | A collection of Python scripts for analyzing and interacting with Cobalt Strike beacons. | 167 |
 strozfriedberg/cobaltstrike-config-extractor | A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. | 145 |
 b1tg/cobaltstrike-beacon-rust | A Cobalt Strike beacon implementation in Rust for creating malicious network connections | 177 |
 crypt0p3g/bof-collection | A collection of beacon object files designed to be used in a remote access tool like Cobalt Strike. | 170 |
 cobalt-strike/beacon_health_check | An aggressor script that tracks the health status of beacons based on their note field | 138 |
 kshoji/microbit-beacon-finder | A tool for detecting and displaying Bluetooth Low Energy (BLE) beacon IDs on an embedded device | 12 |
 z3ratu1/geacon_plus | A Go implementation of a CobaltStrike beacon with support for multiple platforms and various communication protocols | 394 |
 nexusfuzzy/cobaltspam | A tool designed to send fake beacons to a CobaltStrike server as part of a defensive measure | 367 |
 anthemtotheego/detect-hooks | A tool that attempts to detect userland API hooks in place by AV/EDR | 147 |
 pwn1sher/cs-bofs | A collection of compiled beacon object files from the CobaltStrike platform. | 99 |