dissect.cobaltstrike
Exploit parser
Library for dissecting and parsing data related to Cobalt Strike exploits
Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles
147 stars
13 watching
21 forks
Language: Python
last commit: about 1 month ago beaconcobaltstrikedissectmalleable-c2-profileparserpcappypy3pythonpython3
Related projects:
| Repository | Description | Stars |
|---|---|---|
| fox-it/cobaltstrike-beacon-data | Historical metadata of Cobalt Strike Beacon attacks | 122 |
 strozfriedberg/cobaltstrike-config-extractor | A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. | 145 |
 te-k/cobaltstrike | Detects and analyzes Cobalt Strike beacons by analyzing HTTP responses and extracting configuration information. | 262 |
 jamvayne/cobaltstrikedos | A Python script to exploit a Cobalt Strike vulnerability and perform a denial of service attack. | 103 |
 1135/1135-cobaltstrike-toolkit | Provides tools and configurations for a Cobalt Strike toolkit to support advanced persistent threat (APT) operations | 150 |
| fox-it/dissect.cstruct | A parser for C-like structures in Python | 40 |
 sentinel-one/cobaltstrikeparser | Deciphers CobaltStrike Beacon configurations from various formats. | 1,022 |
 killswitch-gui/cobaltstrike-toolkit | A collection of tools and scripts to automate vulnerability assessments and exploitation on CobaltStrike beacons | 846 |
 isafe/cobaltstrike_brute | A Python tool designed to guess Cobalt Strike Team Server passwords | 28 |
 deepingh0st/erebus | A Cobalt Strike plugin for post-exploitation and privilege escalation tests | 1,487 |
 splunk/melting-cobalt | Tool to hunt and mine Cobalt Strike beacons from internet-connected services | 164 |
 wkl-sec/malleable-cs-profiles | A collection of tools to generate and modify shellcode profiles to evade detection in Cobalt Strike | 374 |
 eremit4/cs-discovery | Detects malicious servers in network traffic by analyzing encoded byte patterns | 20 |
 qax-a-team/cobaltstrike-toolset | A collection of tools and scripts used to simulate cyber attacks | 532 |
 phink-team/cobaltstrike-ms17-010 | Exploits and tools for the MS17-010 vulnerability in Windows 7 x64 and Windows Server 2008 R2 | 417 |