UDC2 implementation that provides an ICMP C2 channel
☆116Nov 24, 2025Updated 3 months ago
Alternatives and similar repositories for icmp-udc2
Users that are interested in icmp-udc2 are comparing it to the libraries listed below
Sorting:
- User-Defined C2 BOF Template☆30Nov 24, 2025Updated 3 months ago
- ☆126Jan 23, 2025Updated last year
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆37Aug 5, 2025Updated 7 months ago
- Enable EFS service as low priv user (PE & BOF)☆21Jul 6, 2025Updated 8 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆158Mar 26, 2025Updated 11 months ago
- Safe Harbor is a BOF that streamlines process reconnaissance for red team operations by identifying trusted, low-noise targets to maintai…☆76Oct 27, 2025Updated 4 months ago
- A BOF that's a BOF Loader and more☆199Jan 17, 2026Updated last month
- Arsenal of modules to beacon postex☆94Updated this week
- template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.☆101Jan 10, 2026Updated 2 months ago
- A bunch of shenanigans using functions, VEH and more☆37Jun 8, 2025Updated 9 months ago
- A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.☆16Jul 15, 2025Updated 7 months ago
- A VSCode plugin to assist with BOF development.☆37Aug 14, 2024Updated last year
- Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames☆152Nov 23, 2025Updated 3 months ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆19Apr 24, 2023Updated 2 years ago
- UAC Bypass using UIAccess program QuickAssist☆217Nov 30, 2025Updated 3 months ago
- BOF to run PE in Cobalt Strike Beacon without console creation☆186Nov 23, 2025Updated 3 months ago
- Random BOFs for LDAP tradecraft☆74Sep 9, 2025Updated 6 months ago
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆145Apr 18, 2025Updated 10 months ago
- COM-based DLL Surrogate Injection☆142Dec 9, 2025Updated 3 months ago
- Vectored Exception Handling Squared☆30Dec 27, 2025Updated 2 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆124Jan 17, 2026Updated last month
- Implementing Ghostly-Hollowing using tampered syscalls for remote PE injection☆71Dec 26, 2025Updated 2 months ago
- Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective☆168Jan 12, 2026Updated last month
- ☆10Nov 2, 2023Updated 2 years ago
- ☆51May 4, 2025Updated 10 months ago
- Beacon Debugger☆55Oct 28, 2024Updated last year
- A PoC C2 implementation that uses Native Messaging API to execute direct commands in the OS☆17Nov 5, 2025Updated 4 months ago
- Evasive Payload Delivery Server & C2 Redirector☆112Nov 3, 2025Updated 4 months ago
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆108Aug 18, 2025Updated 6 months ago
- A BOF to enumerate system process, their protection levels, and more.☆125Nov 27, 2024Updated last year
- Cobalt Strike BOF for evasive .NET assembly execution☆308Mar 31, 2025Updated 11 months ago
- load shellcode without P/D Invoke and VirtualProtect call.☆168Sep 2, 2025Updated 6 months ago
- A simple Sleepmask BOF example☆169Nov 24, 2025Updated 3 months ago
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆138Apr 6, 2025Updated 11 months ago
- An example reference design for a proposed BOF PE☆201Jan 23, 2026Updated last month
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆188Jan 17, 2026Updated last month
- ☆50Jun 4, 2025Updated 9 months ago
- A stager and implant that executes remote Web Assembly☆37Feb 4, 2026Updated last month