CobaltStrike-YARA-Bypass-f0b627fc

Repository of scripts from my blog post on bypassing the YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellcode sequences.

JSON API: http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WafflesExploits%2FCobaltStrike-YARA-Bypass-f0b627fc

Stars: 3
Forks: 0
Open issues: 0

License: apache-2.0
Language: Python
Size: 12.7 KB
Dependencies parsed at: Pending

Created at: 8 months ago
Updated at: 8 months ago
Pushed at: 8 months ago
Last synced at: 8 months ago

Topics: automatization, cobalt-strike, edr-bypass, edr-evasion, python, yara-rules

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Repos

GitHub / WafflesExploits / CobaltStrike-YARA-Bypass-f0b627fc