Beast code in Giters

neutronnaa's starred repositories

TermsrvPatcher

Patcher for termsrv.dll for enabling concurrent remote desktop sessions on non-server Windows editions

Language:C#GPL-3.07200

Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

Language:PythonNOASSERTION362000

EfiCMake

CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).

BSL-1.0300

Mod_Rewrite_Automation

Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.

Language:ShellBSD-3-Clause4700

Malleable-C2-Profiles

Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.com/.

71800

AggressorScripts

Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

Language:C#145500

building-c2-implants-in-cpp

The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).

Language:C++GPL-3.021100

Red-Team-Infra

BSD-3-Clause900

Redcloud

Automated Red Team Infrastructure deployement using Docker

Language:PythonMIT119000

RedLab

Files to automatically deploy red team Active Directory test lab

Language:PowerShell4100

BlueTeam-Tools

Tools and Techniques for Blue Team / Incident Response

247000

RedCommander

Red Team C2 Infrastructure built in AWS using Ansible!

Language:PythonGPL-3.021500

ansible-role-evilginx2-docker

Language:JinjaMIT600

aggressor-scripts

Cobalt Strike Aggressor Scripts

Language:JavaScript13800

RedTeaming_CheatSheet

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

Language:C++GPL-3.0113700

powercat

netshell features all in version 2 powershell

Language:PowerShellApache-2.0206500

SourcePoint

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

Language:Go99300

CobaltStrike-Config

Repository for archiving Cobalt Strike configuration

2700

Malleable-CS-Profiles

A list of python tools to help create an OPSEC-safe Cobalt Strike profile.

Language:YARA32700

SMS-CS-Notify

Notify Beacon Cobalt Strike via SMS

Language:Python100

BokuLoader

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

Language:CMIT120600

ElusiveMice

Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind

Language:C39700

goMalleable

🔎🪲 Malleable C2 profiles parser and assembler written in golang

Language:GoMIT5700

Security-Datasets

Re-play Security Events

Language:PowerShellMIT156900

warhorse

Infrastructure Automation

Language:JinjaMIT30600

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Language:GoBSD-3-Clause1017900

Malleable-C2-Profiles

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.

145100

SharpMove

.NET Project for performing Authenticated Remote Execution

Language:C#GPL-3.037000

MoveKit

Cobalt Strike kit for Lateral Movement

Language:C#GPL-3.063900

Awesome-CobaltStrike-Defence

Defences against Cobalt Strike

MIT125300