CobaltStrikeForensic
Malware analyzer
Toolset to analyze and research malware and Cobalt Strike beacon behavior
Toolset for research malware and Cobalt Strike beacons
206 stars
11 watching
38 forks
Language: HTML
last commit: almost 2 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 eremit4/cs-discovery | Detects malicious servers in network traffic by analyzing encoded byte patterns | 20 |
 strozfriedberg/cobaltstrike-config-extractor | A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. | 145 |
 wikiz/service_cobaltstrike | A CobaltStrike profile repository containing metadata and information about the CobaltStrike malware | 39 |
 b1tg/cobaltstrike-beacon-rust | A Cobalt Strike beacon implementation in Rust for creating malicious network connections | 177 |
 te-k/cobaltstrike | Detects and analyzes Cobalt Strike beacons by analyzing HTTP responses and extracting configuration information. | 262 |
 huoji120/cobaltstrikedetected | Detects potential Cobalt Strike malware by analyzing memory allocation patterns during code execution | 271 |
 sentinel-one/cobaltstrikeparser | Deciphers CobaltStrike Beacon configurations from various formats. | 1,022 |
 mgeeky/cobalt-arsenal | A collection of battle-tested PowerShell scripts for Cobalt Strike 4.0+ | 1,036 |
 deepingh0st/erebus | A Cobalt Strike plugin for post-exploitation and privilege escalation tests | 1,487 |
 timwhitez/cobalt-strike-aggressor-scripts | A Cobalt Strike plugin package with various exploit and password cracking tools. | 672 |
 lintstar/cs-serverchan | Automates CobaltStrike notification to WeChat via ServerChan | 92 |
 r1is/cobalt_strike_bot | Automates CobaltStrike login notifications to Slack and Feishu. | 87 |
 fox-it/dissect.cobaltstrike | Library for dissecting and parsing data related to Cobalt Strike exploits | 147 |
 wafinfo/cobaltstrike | A plugin for Cobalt Strike that automates various tasks such as domain lookup, information gathering, and internal network scanning. | 180 |
 1135/1135-cobaltstrike-toolkit | Provides tools and configurations for a Cobalt Strike toolkit to support advanced persistent threat (APT) operations | 150 |