melting-cobalt
Beacon hunter
Tool to hunt and mine Cobalt Strike beacons from internet-connected services
A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
164 stars
16 watching
25 forks
Language: Python
last commit: about 2 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 te-k/cobaltstrike | Detects and analyzes Cobalt Strike beacons by analyzing HTTP responses and extracting configuration information. | 262 |
 vysecurity/cobaltsplunk | A Splunk application designed to ingest and analyze Cobalt Strike logs, providing operational dashboards and reports. | 85 |
 fox-it/dissect.cobaltstrike | Library for dissecting and parsing data related to Cobalt Strike exploits | 147 |
 strozfriedberg/cobaltstrike-config-extractor | A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. | 145 |
 apr4h/cobaltstrikescan | A tool for detecting and parsing CobaltStrike beacon configuration from files or process memory. | 900 |
| fox-it/cobaltstrike-beacon-data | Historical metadata of Cobalt Strike Beacon attacks | 122 |
 3lp4tr0n/beaconhunter | A tool for detecting and responding to potential Cobalt Strike beacons using Extended Trace Record (ETW) tracing | 481 |
 sentinel-one/cobaltstrikeparser | Deciphers CobaltStrike Beacon configurations from various formats. | 1,022 |
 eremit4/cs-discovery | Detects malicious servers in network traffic by analyzing encoded byte patterns | 20 |
 cobalt-strike/unhook-bof | Removes API hooks from a malicious process | 54 |
 nexusfuzzy/cobaltspam | A tool designed to send fake beacons to a CobaltStrike server as part of a defensive measure | 367 |
 z3ratu1/geacon_plus | A Go implementation of a CobaltStrike beacon with support for multiple platforms and various communication protocols | 394 |
 b1tg/cobaltstrike-beacon-rust | A Cobalt Strike beacon implementation in Rust for creating malicious network connections | 177 |
 burpheart/cs_mock | A tool to simulate a Cobalt Strike beacon connection packet by parsing the payload and extracting RSA public key | 79 |
 romanemelyanov/cobaltstrikeforensic | Toolset to analyze and research malware and Cobalt Strike beacon behavior | 206 |