CobaltStrike_CNA

Persistence script

A PowerShell script for maintaining persistence on Windows systems by utilizing various WinAPIs and Cobalt Strike features.

使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。

GitHub

533 stars
10 watching
85 forks
Language: PowerShell
last commit: almost 3 years ago
adduserscobaltstrike-pluginspersistentservicestask-schedulerwmi

Related projects:

Repository Description Stars
cyri1s/cobalt-strike-persistence A script that enables persistence after an initial Cobalt Strike payload is delivered to a system 70
0xthirteen/staykit A persistence kit for Cobalt Strike using a custom .NET assembly and leveraging various Windows techniques to maintain access after initial access is lost. 468
lintstar/cs-serverchan Automates CobaltStrike notification to WeChat via ServerChan 93
codextf2/cobaltstrike-headless A tool that converts a headless Cobalt Strike client into a functional one. 147
p292/phant0m_cobaltstrike A PowerShell script that integrates Phant0m with Cobalt Strike to automate tasks 27
deepingh0st/erebus A Cobalt Strike plugin for post-exploitation and privilege escalation tests 1,494
bytecod3r/cobaltstrike-aggressor-scripts-collection A collection of tested Cobaltstrike aggressor scripts in PowerShell. 109
wafinfo/cobaltstrike A plugin for Cobalt Strike that automates various tasks such as domain lookup, information gathering, and internal network scanning. 180
killswitch-gui/cobaltstrike-toolkit A collection of tools and scripts to automate vulnerability assessments and exploitation on CobaltStrike beacons 846
alphabugx/csonvps Automated deployment script for CobaltStrike 4.4 on VPS 288
fox-it/dissect.cobaltstrike Library for dissecting and parsing data related to Cobalt Strike exploits 148
1135/1135-cobaltstrike-toolkit Provides tools and configurations for a Cobalt Strike toolkit to support advanced persistent threat (APT) operations 149
qax-a-team/cobaltstrike-toolset A collection of tools and scripts used to simulate cyber attacks 533
nvisosecurity/cobaltwhispers An aggressor script that allows Cobalt Strike to perform process injection and persistence by leveraging direct syscalls to bypass EDR/AV systems. 229
jamvayne/cobaltstrikedos A Python script to exploit a Cobalt Strike vulnerability and perform a denial of service attack. 103