《神器CobaltStrike》

这里记录收集一些优秀的CobaltStrike资源。这些项目大部分都未检测是否存在后门，请务必在虚拟机里面运行。

部分Scripts在CobaltStrike4.0以下无法运行，本项目只考虑兼容CobaltStrike4.0。但是抱着学习的态度，对于一些优秀的Scripts即使无法兼容4.0也会进行收集整理。CobaltStrike思想是红队的未来。

原仓库由于DMCA政策被删除。现改名为365CS重新发布。CobaltStrike在工作中项目实施中越来越重要，所以本项目计划重新整理中。重新整理发布不会违法DMCA的相关政策。作者：0e0w

本项目创建时间为2020年8月8日。最近的一次更新时间为2021年8月3日。

再次由于DMCA政策，本项目暂停公开更新！并删除CobaltStrike备份插件内容。感谢理解！

0x01-持久上线

• StayKit

0x02-免杀处理

• BypassAV
• Arsenal-Kits
• CS-Loader
• Doge-Loader
• https://paper.seebug.org/1349/

0x03-上线提醒

• CS_Mail_Tip
• WeChatPush

0x04-综合框架

• HAETAE
• taowu
• Ladon
• Aggressor
• CrossC2
• Erebus
• Cobalt-Strike-Aggressor-Scripts
• https://github.com/wafinfo/cobaltstrike
• https://github.com/Adminisme/ServerScan

0x05-权限提升

• weichi
• ElevateKit
• Aggressor-Script
• SweetPotato_CS

0x06-漏洞扫描

• CVE-2018-4878
• CVE-2020-0796
• MS17-010

0x07-流量隧道

• UploadAndRunFrp

0x08-痕迹清理

• EventLogMaster
• Phant0m_cobaltstrike

0x09-其他内容

• https://github.com/bitsadmin/nopowershell
• https://github.com/darkr4y/geacon
• https://github.com/vysecurity/ANGRYPUPPY
• https://github.com/001SPARTaN/aggressor_scripts
• https://github.com/harleyQu1nn/AggressorScripts
• https://github.com/bluscreenofjeff/AggressorScripts
• https://github.com/mgeeky/cobalt-arsenal
• https://github.com/zer0yu/Awesome-CobaltStrike
• https://github.com/TheKingOfDuck/XSS-Fishing2-CS
• https://github.com/timwhitez/XSS-Phishing
• https://github.com/alphaSeclab/cobalt-strike
• https://github.com/bitsadmin/fakelogonscreen
• https://github.com/Al1ex/CSPlugins
• https://github.com/zer0yu/Awesome-CobaltStrike
• https://github.com/josephkingstone/cobalt_strike_extension_kit
• https://github.com/threatexpress/malleable-c2
• https://github.com/isafe/cobaltstrike_brute
• https://github.com/ryanohoro/csbruter
• https://github.com/1135/1135-CobaltStrike-ToolKit
• https://github.com/cube0x0/SharpeningCobaltStrike
• https://github.com/Cliov/Arsenal
• https://github.com/outflanknl/Zipper
• https://github.com/verctor/Cobalt_Homework
• https://github.com/outflanknl/Spray-AD
• https://github.com/Apr4h/CobaltStrikeScan
• https://github.com/darkr4y/geacon
• https://github.com/SecIdiot/CobaltPatch
• https://github.com/darkr4y/geacon
• https://github.com/m57/cobaltstrike_bofs
• https://github.com/killswitch-GUI/CobaltStrike-ToolKit
• https://github.com/Rvn0xsy/Cobaltstrike-atexec
• https://github.com/aleenzz/Cobalt_Strike_wiki
• https://teamssix.com/year/201023-192553.html
• https://github.com/Lz1y/SyncDog
• https://github.com/Freakboy/CobaltStrike
• https://github.com/Daybr4ak/C2ReverseProxy
• https://github.com/CCob/BOF.NET
• https://github.com/rasta-mouse/Aggressor-Script
• https://github.com/bluscreenofjeff/AggressorScripts
• https://github.com/EncodeGroup/AggressiveGadgetToJScript
• https://github.com/bytecod3r/Cobaltstrike-Aggressor-Scripts-Collection
• https://github.com/Sifter-Ex/cPlug
• https://github.com/rsmudge/cortana-scripts
• https://github.com/dcsync/pycobalt
• https://github.com/uknowsec/SharpToolsAggressor
• https://www.cnblogs.com/backlion/p/14000269.html
• https://github.com/hayasec/360SafeBrowsergetpass
• https://github.com/S1ckB0y1337/Cobalt-Strike-CheatSheet
• https://github.com/sk3w/beacon-object-files
• https://xz.aliyun.com/t/8557
• https://www.freebuf.com/articles/web/255876.html
• https://github.com/Ridter/cs_custom_404
• https://github.com/medasz/CobaltStrike4.0
• https://github.com/c1y2m3/FileSearch
• https://github.com/bopin2020/NetUser
• https://github.com/qigpig/bypass-beacon-config-scan
• https://github.com/slaeryan/DetectCobaltStomp
• https://github.com/breakid/SharpUtils
• https://github.com/rmikehodges/cs-ssl-gen
• https://github.com/Rvn0xsy/Cobaltstrike-atexec
• https://github.com/z1un/Z1-AggressorScripts
• https://github.com/Te-k/cobaltstrike
• https://github.com/S1ckB0y1337/Cobalt-Strike-CheatSheet
• https://github.com/outflanknl/InlineWhispers
• https://github.com/outflanknl/WdToggle
• https://wiki.ioin.in/url/G7PK
• https://github.com/RedXRanger/StageStrike
• https://github.com/outflanknl/Zipper
• https://github.com/Ridter/CS_Chinese_support
• https://github.com/0xthirteen/MoveKit
• https://github.com/SecIdiot/Beacon
• https://github.com/MichaelKoczwara/Awesome-CobaltStrike-Defence
• https://github.com/RCStep/CSSG
• https://github.com/outflanknl/FindObjects-BOF
• https://github.com/xx0hcd/Malleable-C2-Profiles
• https://github.com/Ridter/cs_custom_404
• https://github.com/nccgroup/pybeacon
• https://github.com/Rvn0xsy/Linco2
• https://github.com/Skactor/cs-scripts
• https://www.svenbeast.com/post/ny5NkDd40
• https://github.com/FortyNorthSecurity/C2concealer
• https://github.com/j5s/Automatic-permission-maintenance
• https://github.com/mgeeky/RedWarden
• https://github.com/Lz1y/GECC
• https://github.com/Daybr4ak/C2ReverseProxy
• https://github.com/mgeeky/RedWarden
• https://github.com/RCStep/CSSG
• https://github.com/Twi1ight/CSAgent
• https://github.com/ORCA666/Cobalt-Wipe
• https://github.com/vestjoe/cobaltstrike_services
• https://github.com/xorrior/raven
• https://github.com/verctor/Cobalt_Homework
• https://github.com/xinbailu/TiEtwAgent
• https://github.com/GeorgePatsias/ScareCro
• https://github.com/burpheart/CS_mock
• https://github.com/boku7/injectAmsiBypass
• https://github.com/capt-meelo/Beaconator
• https://github.com/huoji120/CobaltStrikeDetected
• https://github.com/capt-meelo/Beaconator
• https://github.com/Mikasazero/Cobalt-Strike
• https://github.com/boku7/spawn
• https://github.com/boku7/injectAmsiBypass