Aggressor Scripts

Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

All_In_One.cna v1 - Removed and outdated
- All purpose script to enhance the user's experience with cobaltstrike. Custom menu creation, Logging, Persistence, Enumeration, and 3rd party script integration.
- Version 2 is currently in development!
ArtifactPayloadGenerator.cna
- Generates every type of Stageless/Staged Payload based off a HTTP/HTTPS Listener
- Creates /opt/cobaltstrike/Staged_Payloads, /opt/cobaltstrike/Stageless_Payloads
AVQuery.cna
- Queries the Registry with powershell for all AV Installed on the target
- Quick and easy way to get the AV you are dealing with as an attacker
CertUtilWebDelivery.cna
- Stageless Web Delivery using CertUtil.exe
- Powerpick is used to spawn certutil.exe to download the stageless payload on target and execute with rundll32.exe
EDR.cna
- Detects EDR solutions running on local/remote hosts
RedTeamRepo.cna
- A common collection of OS commands, and Red Team Tips for when you have no Google or RTFM on hand.
- Script will be updated on occasion, feedback and more inputs are welcomed!
ProcessColor.cna
- Color coded process listing without the file requirement.
- Thanks to @oldb00t for the original version: https://github.com/oldb00t/AggressorScripts/tree/master/Ps-highlight

Name	Name	Last commit message	Last commit date
Latest commit harleyQu1nn Merge pull request #16 from 0xAsh/master Jun 30, 2023 570a7d7 · Jun 30, 2023 History 189 Commits
DriverSearcher	DriverSearcher	Updated for CrowdStrike	Aug 21, 2019
Logging	Logging	Added Newer Symantec processes	Nov 7, 2017
Persistence	Persistence	escape backslashes	Oct 27, 2020
AVQuery.cna	AVQuery.cna	Fixed line 21 errors and added a pause for execution	Mar 15, 2018
All_In_One.cna	All_In_One.cna	Remaking this completely, keep an eye out for v2 :)	Feb 9, 2018
ArtifactPayloadGenerator.cna	ArtifactPayloadGenerator.cna	Updated and Fixed for CS 4.0	Aug 12, 2020
CertUtilWebDelivery.cna	CertUtilWebDelivery.cna	Updated script to use PowerPick thanks @424f424f !	Sep 2, 2017
EDR.cna	EDR.cna	Fixed a bunch of syntax + logic errors	Jun 26, 2023
ProcessColor.cna	ProcessColor.cna	Added Cybereason processes	Oct 23, 2019
ProcessMonitor.cna	ProcessMonitor.cna	Add files via upload	Oct 12, 2017
ProcessMonitor.ps1	ProcessMonitor.ps1	Add files via upload	Oct 12, 2017
README.md	README.md	Update README.md	May 2, 2023
RedTeamRepo.cna	RedTeamRepo.cna	Update RedTeamRepo.cna	Sep 4, 2017
SMBPayloadGenerator.cna	SMBPayloadGenerator.cna	SMB Artifact Payload Generator	Oct 24, 2018
logvis.cna	logvis.cna	Added in real time updating	Mar 23, 2018

Provide feedback