CodeX

Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles

CodeXTF2

An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.

CodeXTF2

This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built in Sleep() call. Most of the structure e.g. Sleep hook, shellcod...

CodeXTF2

Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.

CodeXTF2

A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally safe or stable, built as a PoC to showcase Havoc C2's modular C...

CodeXTF2

My collection of malware dev links

CodeXTF2

Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog post as a tutorial sample

CodeXTF2

WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.

CodeXTF2

Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"

CodeXTF2