apkc Goto Github PK

bof_collection

Various Cobalt Strike BOFs

bof_template

A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use internal Beacon APIs. BOFs are a way to rapidly extend the Beacon agent with new post-exploitation features.

bofs-3

Cobalt Strike Beacon Object Files

bokuloader

Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities. By: @0xBoku & @s4ntiago_p

boopkit

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

bounceback

↕️🤫 Stealth redirector for your red team operation security

bountyit

A fuzzer made in golang for finding issues like xss, lfi, rce, ssti...that detects issues using change in content length and verify it using signatures

brc4-seminar-stage-i

These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be found here:

brokenflow

A simple PoC to invoke an encrypted shellcode by using an hidden call

brute-ratel-c4-community-kit

This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)

brute-ratel-external-c2-specification

This repository provides the core to build your own External C2 Server and Connector for Brute Ratel C4

bruteratel-1.2.2

bumblecrypt

A Bumblebee-inspired Crypter

burp-suite-certified-practitioner-exam-study

Burp Suite Certified Practitioner Exam Study

burp2malleable

Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles

burpsuite-for-pentester

burpsuiteinstaller

Install and Activate your Burp Suite Professional with ase.

bypass-av-directsyscalls

Scripts permettant de contourner la protection antivirale de Windows Defender via la technique de Direct Syscalls avec une injection de shellcode préalablement obfusqué avec un fonction XOR.

bypassav

This map lists the essential techniques to bypass anti-virus and EDR

c2-redirectors

Automate c2 redirector deployments.

c2-tool-collection

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

c2concealer

C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.

c3

Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.

caddy

Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

caddystager

callstackspoofingpoc

C++ self-Injecting dropper based on various EDR evasion techniques.

capsulecorp-pentest

Vagrant VirtualBox environment for conducting an internal network penetration test

caro-kann

Encrypted shellcode Injection to avoid Kernel triggered memory scans

cavecarver

CaveCarver - PE backdooring tool which utilizes and automates code cave technique

certify

Active Directory certificate abuse.