0xedh/dumpguard_bof external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0xedh/dumpguard_bof

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xedh/dumpguard_bof)

Close

0xedh / dumpguard_bofView on GitHubMore

• External links
• Readme badge

Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.

☆215Jan 6, 2026Updated 4 months ago

Alternatives and similar repositories for dumpguard_bof

Users that are interested in dumpguard_bof are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• TierZeroSecurity / killerPID-BOF

  View on GitHub
  BOF to terminate a process via PID as argument
  ☆28Sep 7, 2025Updated 8 months ago
• whokilleddb / ASPxecute

  View on GitHub
  Execute shellcode via ASPNET compiler
  ☆61Oct 2, 2025Updated 7 months ago
• decoder-it / printerbugnew

  View on GitHub
  The DCERPC only printerbug.py version
  ☆219Oct 30, 2025Updated 6 months ago
• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆32Dec 20, 2025Updated 5 months ago
• deh00ni / NtDumpBOF

  View on GitHub
  ☆100Sep 1, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• CCob / DRSAT

  View on GitHub
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆310Mar 28, 2026Updated 2 months ago
• Nomad0x7 / sekken-enum

  View on GitHub
  adws enumeration bof
  ☆172Feb 16, 2026Updated 3 months ago
• CCob / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆16Dec 6, 2024Updated last year
• Ghaleb0x317374 / StealthyWMIExec.py

  View on GitHub
  A stealthier approach to WMI-based command execution using Impacket without touching the disk.
  ☆83Mar 15, 2026Updated 2 months ago
• zero2504 / COMouflage

  View on GitHub
  COM-based DLL Surrogate Injection
  ☆169Dec 9, 2025Updated 5 months ago
• boku7 / patchwerk

  View on GitHub
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆197Feb 6, 2025Updated last year
• MEhrn00 / boflink

  View on GitHub
  Linker for Beacon Object Files
  ☆182Mar 30, 2026Updated last month
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆133Jan 23, 2025Updated last year
• vmsplit / nebula

  View on GitHub
  arm64 linux position-independent shellcode framework
  ☆31Dec 12, 2025Updated 5 months ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• MartinoTommasini / offlineSCCMdecrypt

  View on GitHub
  Step-by-step documentation on how to decrypt SCCM database secrets offline
  ☆50Oct 20, 2025Updated 7 months ago
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated 2 years ago
• Meowmycks / trustme

  View on GitHub
  BOF to impersonate TrustedInstaller via DISM API trigger and thread impersonation
  ☆131Mar 27, 2026Updated 2 months ago
• 0xsh3llf1r3 / ColdWer

  View on GitHub
  Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass
  ☆136Jan 29, 2026Updated 4 months ago
• zero2504 / Detoured-DLL-Injection

  View on GitHub
  DLL injection with Microsoft detours
  ☆23Dec 9, 2025Updated 5 months ago
• zero2504 / Early-Cryo-Bird-Injections

  View on GitHub
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆144Apr 6, 2025Updated last year
• jborean93 / AmsiProvider

  View on GitHub
  Test AMSI Provider implementation in C#
  ☆45Dec 18, 2024Updated last year
• nbaertsch / nimvoke

  View on GitHub
  Indirect syscalls + DInvoke made simple.
  ☆97Dec 24, 2024Updated last year
• djackreuter / rustlualoader

  View on GitHub
  Shellcode loader that executes embedded Lua from Rust.
  ☆125Dec 16, 2024Updated last year
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• NtDallas / OdinLdr

  View on GitHub
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆192Jan 17, 2026Updated 4 months ago
• p0dalirius / bhopengraph

  View on GitHub
  A python library to create BloodHound OpenGraphs
  ☆61Feb 4, 2026Updated 3 months ago
• t94j0 / adexplorersnapshot-rs

  View on GitHub
  ☆96Apr 27, 2026Updated last month
• antroguy / GetAccessTokenWithSSOCookie

  View on GitHub
  ☆50Jun 4, 2025Updated 11 months ago
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆109Aug 21, 2024Updated last year
• CodeXTF2 / Cobaltstrike_BOFLoader

  View on GitHub
  open source port/reimplementation of the Cobalt Strike BOF Loader as is
  ☆72Mar 8, 2026Updated 2 months ago
• SAERXCIT / LibTP_Gadget

  View on GitHub
  Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.
  ☆22Nov 11, 2025Updated 6 months ago
• ColeHouston / Sunder

  View on GitHub
  Windows rootkit designed to work with BYOVD exploits
  ☆221Jan 18, 2025Updated last year
• EricEsquivel / CobaltStrike-Linux-Beacon

  View on GitHub
  Proof of Concept (PoC) implant for creating custom Cobalt Strike Beacons
  ☆209Feb 11, 2026Updated 3 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• RedSiege / SharpCollectionTemplate

  View on GitHub
  ☆14Sep 26, 2023Updated 2 years ago
• kozmer / aad-bofs

  View on GitHub
  ☆139Nov 17, 2025Updated 6 months ago
• dirkjanm / roadtools_hybrid

  View on GitHub
  Hybrid AD utilities for ROADtools
  ☆109May 25, 2025Updated last year
• Xenov-X / csbot

  View on GitHub
  Golang Automation Framework for Cobalt Strike using the Rest API
  ☆59Apr 10, 2026Updated last month
• entropy-z / PostEx-Arsenal

  View on GitHub
  Arsenal of modules to beacon postex
  ☆103Mar 13, 2026Updated 2 months ago
• y00ga-sec / Trustify

  View on GitHub
  Attack Active Directory Trusts with a single tool
  ☆13Jan 15, 2025Updated last year
• NtDallas / BOF_Spawn

  View on GitHub
  Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames
  ☆154Nov 23, 2025Updated 6 months ago