Top 12 cobaltstrike Open-Source Projects

BokuLoader

2 1,184 6.9 C

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
geacon

1 1,099 0.0 Go

Practice Go programming and implement CobaltStrike's Beacon in Go
InfluxDB

www.influxdata.com sponsored

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
cobalt-arsenal

2 979 0.0 PowerShell

My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
nopowershell

1 883 4.3 C#

PowerShell rebuilt in C# for Red Teaming purposes
manjusaka

1 745 4.4 Rust

牛屎花一款基于WEB界面的远程主机管理工具
C2IntelFeeds

1 433 9.9 REXX

Automatically created C2 Feeds
CobaltSpam

3 365 1.8 Python

Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons
WorkOS

workos.com sponsored

The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
Burp2Malleable

3 330 1.2 Python

Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles
cobaltstrike-headless

4 143 10.0

Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
AggressiveProxy

1 140 0.0 C#

Project to enumerate proxy configurations and generate shellcode from CobaltStrike
cobaltstrike-beacon-data

1 115 2.6 Jupyter Notebook

Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
ipv4guard

2 7 10.0

A Cobalt Strike Aggressor Script that aims to help prevent errant Cobalt Strike commands from being executed on non-whitelisted / off-target / out-of-scope / unapproved IPv4 addresses.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

cobaltstrike related posts

How do I write an aggressor script in Cobalt Strike that will send commands to a beacon?
1 project | /r/redteamsec | 27 Feb 2023
CNA script testing/feedback
2 projects | /r/redteamsec | 14 Dec 2022
cobaltstrike-headless - Headless CobaltStrike client
1 project | /r/u_CyberGh00st | 9 Sep 2022
cobaltstrike-headless: Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client - HackOps via Slack is now a thing
1 project | /r/blueteamsec | 9 Sep 2022
cobaltstrike-headless - Headless CobaltStrike client
1 project | /r/redteamsec | 8 Sep 2022
Burp2Malleable - turn HTTP requests into MalleableC2 profiles
1 project | /r/u_Commercial-Web8332 | 23 Aug 2022
Burp2Malleable - turn HTTP requests into MalleableC2 profiles
1 project | /r/redteamsec | 14 Aug 2022
A note from our sponsor - InfluxDB
www.influxdata.com | 25 Apr 2024

Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

What are some of the best open-source cobaltstrike projects? This list will help you:

	Project	Stars
1	BokuLoader	1,184
2	geacon	1,099
3	cobalt-arsenal	979
4	nopowershell	883
5	manjusaka	745
6	C2IntelFeeds	433
7	CobaltSpam	365
8	Burp2Malleable	330
9	cobaltstrike-headless	143
10	AggressiveProxy	140
11	cobaltstrike-beacon-data	115
12	ipv4guard	7