Beast code in Giters

neutronnaa's starred repositories

TermsrvPatcher

Patcher for termsrv.dll for enabling concurrent remote desktop sessions on non-server Windows editions

Language:C#GPL-3.07400

Villain is a high level stage 0/1 C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).

Language:PythonNOASSERTION364400

EfiCMake

CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).

BSL-1.0300

Mod_Rewrite_Automation

Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.

Language:ShellBSD-3-Clause4700

Malleable-C2-Profiles

Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.com/.

72400

AggressorScripts

Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

Language:C#147000

building-c2-implants-in-cpp

The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).

Language:C++GPL-3.021500

Red-Team-Infra

BSD-3-Clause900

Redcloud

Automated Red Team Infrastructure deployement using Docker

Language:PythonMIT119300

RedLab

Files to automatically deploy red team Active Directory test lab

Language:PowerShell4100

BlueTeam-Tools

Tools and Techniques for Blue Team / Incident Response

255200

RedCommander

Red Team C2 Infrastructure built in AWS using Ansible!

Language:PythonGPL-3.021700

ansible-role-evilginx2-docker

Language:JinjaMIT500

aggressor-scripts

Cobalt Strike Aggressor Scripts

Language:JavaScript13800

RedTeaming_CheatSheet

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

Language:C++GPL-3.0117000

powercat

netshell features all in version 2 powershell

Language:PowerShellApache-2.0208500

SourcePoint

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

Language:Go100700

CobaltStrike-Config

Repository for archiving Cobalt Strike configuration

2600

Malleable-CS-Profiles

A list of python tools to help create an OPSEC-safe Cobalt Strike profile.

Language:YARA33500

SMS-CS-Notify

Notify Beacon Cobalt Strike via SMS

Language:Python100

BokuLoader

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

Language:CMIT122700

ElusiveMice

Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind

Language:C40100

goMalleable

🔎🪲 Malleable C2 profiles parser and assembler written in golang

Language:GoMIT5500

Security-Datasets

Re-play Security Events

Language:PowerShellMIT157500

warhorse

Infrastructure Automation

Language:JinjaMIT30800

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Language:GoBSD-3-Clause1034800

Malleable-C2-Profiles

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.

146300

SharpMove

.NET Project for performing Authenticated Remote Execution

Language:C#GPL-3.036700

MoveKit

Cobalt Strike kit for Lateral Movement

Language:C#GPL-3.064200

Awesome-CobaltStrike-Defence

Defences against Cobalt Strike

MIT125900