cs-token-vault
Token Storage
In-memory storage for stolen Windows access tokens to manage access credentials in Cobalt Strike.
In-memory token vault BOF for Cobalt Strike
137 stars
4 watching
25 forks
Language: C
last commit: over 2 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 mlcsec/asrenum-bof | Tools to detect and exploit vulnerabilities in Windows Attack Surface Reduction (ASR) settings | 142 |
 wkl-sec/hiddendesktop | An implementation of HVNC for Cobalt Strike, allowing operators to interact with remote desktop sessions without user knowledge. | 1,169 |
 0x3rhy/adduser-bof | A Cobalt Strike BOF that exploits a vulnerability to add an admin user | 70 |
 riccardoancarani/bofs | Utilities for Cobalt Strike's Beacon Object Files to simplify working with shellcode and system processes | 111 |
 cosmwasm/cw-storage-plus | Provides storage abstractions for CosmWasm smart contracts | 38 |
 guervild/bofs | Beacon object files for Cobalt Strike | 158 |
 crypt0p3g/bof-collection | A collection of beacon object files designed to be used in a remote access tool like Cobalt Strike. | 170 |
 consensys/quorum-account-plugin-hashicorp-vault | A plugin that enables Quorum to store account private keys in a Hashicorp Vault for secure key management. | 7 |
 boku7/halosgate-ps | A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. | 95 |
 rvrsh3ll/bof_collection | A collection of Cobalt Strike Beacon Objectives (BOFs) that perform various tasks such as domain information retrieval, clipboard data extraction, WiFi enumeration, port scanning, and registry persistence. | 592 |
 huoji120/cobaltstrikedetected | Detects potential Cobalt Strike malware by analyzing memory allocation patterns during code execution | 272 |
| wkl-sec/malleable-cs-profiles | A collection of tools to generate and modify shellcode profiles to evade detection in Cobalt Strike | 384 |
 ricoberger/vault-secrets-operator | Creates Kubernetes secrets from Vault for a secure GitOps workflow | 636 |
 sumup-oss/terraform-provider-vaulted | Enables Terraform to store encrypted secrets via a third-party provider | 38 |
 kyleavery/aceldr | A Cobalt Strike memory scanner evasion technique using code obfuscation and encryption to evade detection. | 887 |