βοΈπ€« Stealth redirector for your red team operation security
β1,090Jun 1, 2026Updated last month
Alternatives and similar repositories for BounceBack
Users that are interested in BounceBack are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Collection of Beacon Object Files (BOF) for Cobalt Strikeβ702Updated this week
- A beacon object file implementation of PoolParty Process Injection Technique.β452Dec 21, 2023Updated 2 years ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β626Jan 2, 2025Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniβ¦β1,396Oct 27, 2023Updated 2 years ago
- HVNC for Cobalt Strikeβ1,335Dec 7, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β802Jan 26, 2026Updated 5 months ago
- A BOF that runs unmanaged PEs inlineβ702Oct 23, 2024Updated last year
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.β1,213Apr 16, 2025Updated last year
- Shellcode encryptor & obfuscator toolβ1,025May 23, 2026Updated last month
- Cobalt Strike UDRL for memory scanner evasion.β1,020Jun 4, 2024Updated 2 years ago
- RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.β1,565Aug 20, 2024Updated last year
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Frameworkβ651May 8, 2025Updated last year
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.β313Dec 9, 2023Updated 2 years ago
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.β606Jan 20, 2026Updated 5 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Analyse your malware to surgically obfuscate itβ539Jun 27, 2026Updated last week
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phanβ¦β285Sep 18, 2024Updated last year
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the β¦β1,885Nov 3, 2024Updated last year
- A memory-based evasion technique which makes shellcode invisible from process start to end.β1,199Oct 16, 2023Updated 2 years ago
- Remote operations commands implemented using Beacon Object Filesβ1,168Mar 5, 2026Updated 3 months ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph APIβ633Jun 25, 2024Updated 2 years ago
- Collection of UAC Bypass Techniques Weaponized as BOFsβ637Feb 21, 2024Updated 2 years ago
- Execute unmanaged Windows executables in CobaltStrike Beaconsβ724Mar 4, 2023Updated 3 years ago
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.β¦β927Jun 25, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the β¦β572Jun 5, 2023Updated 3 years ago
- New generation of wmiexec.pyβ1,289Apr 26, 2026Updated 2 months ago
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfveβ¦β598Jun 12, 2024Updated 2 years ago
- Terminate AV/EDR Processes using kernel driverβ353Jun 12, 2023Updated 3 years ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Direβ¦β885Feb 3, 2024Updated 2 years ago
- Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8β352Aug 29, 2024Updated last year
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).β596Mar 19, 2024Updated 2 years ago
- WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.β284Feb 24, 2025Updated last year
- An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercerβ749May 19, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.β412Jan 11, 2026Updated 5 months ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.β531Jun 12, 2026Updated 3 weeks ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!β1,417Nov 22, 2023Updated 2 years ago
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).β593Nov 23, 2025Updated 7 months ago
- Nameless C2 - A C2 with all its components written in Rustβ285Sep 26, 2024Updated last year
- Simulate the behavior of AV/EDR for malware development training.β567Feb 15, 2024Updated 2 years ago
- Threadless Process Injection using remote function hooking.β819Sep 4, 2024Updated last year