red team operations and adversary simulations wiki
-
Updated
Sep 26, 2019
red team operations and adversary simulations wiki
Collection of personal yara rules
CobaltStrike TeamServer hunting script. Produced to identify poorly configured CobaltStrike TeamServers and catalog assocaited IOCs. Old Code. YMMV
Cobalt Strike beacons log parser (beacon*.log)
A Cobalt Strike Aggressor Script that aims to help prevent errant Cobalt Strike commands from being executed on non-whitelisted / off-target / out-of-scope / unapproved IPv4 addresses.
Beacon Object File to automatically/unattended inject in one of the specified processes.
Light and more OPSEC friendly way for red teamers to gain quick situational awareness of both the host and the user.
beacon notifier to jabber
An updated fork of @3lp4tr0n's BeaconHunter. Detect and respond to Cobalt Strike beacons using ETW
A pure python, Cobalt Strike External C2 client library
This code will pull Cobalt Strike Team Servers and Metasploit Servers from Shodan's API using various criteria.
Setup server-less Cobolt strike redirector with one click
cobaltstrike的相关资源汇总 / A collection of cobaltstrike resources to make you better!
Beacon Object File PoC implementation of KillDefender
A Bash script that automates the creation of a Cobalt Strike Malleable Profile.
Aggressor Notification Scripts for cobaltstrike via slack & discord
Vim syntax highlighting for Cobalt Strike’s aggressor language
Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-strike/sleep-mask-kit-iocs
Add a description, image, and links to the cobaltstrike topic page so that developers can more easily learn about it.
To associate your repository with the cobaltstrike topic, visit your repo's landing page and select "manage topics."