EspressoCake/DLL_Version_Enumeration_BOF external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

EspressoCake/DLL_Version_Enumeration_BOF

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/EspressoCake/DLL_Version_Enumeration_BOF)

Close

EspressoCake / DLL_Version_Enumeration_BOFView on GitHubMore

• External links
• Readme badge

A BOF for enumerating version information for DLLs associated for a Beacon process.

☆16Nov 23, 2021Updated 4 years ago

Alternatives and similar repositories for DLL_Version_Enumeration_BOF

Users that are interested in DLL_Version_Enumeration_BOF are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MaorSabag / fileSearcher

  View on GitHub
  A simple BOF (Beacon Object File) to search files in the system
  ☆15Dec 2, 2023Updated 2 years ago
• Octoberfest7 / Backstab_BOF

  View on GitHub
  Beacon Object File implementation of Yaxser's Backstab
  ☆15Mar 9, 2022Updated 4 years ago
• sk3w / beacon-object-files

  View on GitHub
  Miscellaneous examples for use with Cobalt Strike Beacon
  ☆10Nov 19, 2020Updated 5 years ago
• EspressoCake / PPLDump_BOF

  View on GitHub
  A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
  ☆143Sep 24, 2021Updated 4 years ago
• ASkyeye / CobaltPatch

  View on GitHub
  Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…
  ☆42Sep 3, 2020Updated 5 years ago
• JamesCooteUK / BOFs

  View on GitHub
  Collection of BOFs for Cobalt Strike
  ☆32Mar 28, 2023Updated 2 years ago
• EspressoCake / BetterPipename

  View on GitHub
  Example of using Sleep to create better named pipes.
  ☆41Jul 25, 2023Updated 2 years ago
• G0ldenGunSec / wmiServSessEnum

  View on GitHub
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆36Dec 9, 2019Updated 6 years ago
• Hagrid29 / BOF-CredUI

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆23Nov 23, 2022Updated 3 years ago
• trainr3kt / Readfile_BoF

  View on GitHub
  ☆22Jun 21, 2022Updated 3 years ago
• netero1010 / TrustedPath-UACBypass-BOF

  View on GitHub
  Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.…
  ☆146Aug 16, 2021Updated 4 years ago
• EspressoCake / BOF_NativeAPI_Definitions-VSCode

  View on GitHub
  A VSCode plugin to assist with BOF development.
  ☆37Aug 14, 2024Updated last year
• timwhitez / Bof2PIC

  View on GitHub
  BOF/COFF obj file to PIC(shellcode). by golang
  ☆39Sep 28, 2022Updated 3 years ago
• nick-frischkorn / SuspendEventLogBOF

  View on GitHub
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆29Jun 17, 2022Updated 3 years ago
• NotoriousRebel / ConfigPersist

  View on GitHub
  Modifies machine.config for persistence after installing signed .net assembly onto GAC
  ☆13Mar 17, 2022Updated 4 years ago
• zimnyaa / inmembof.py

  View on GitHub
  A small example of loading BOFs in Python with pure reflection
  ☆19Jan 26, 2023Updated 3 years ago
• Hackcraft-Labs / SharpShares

  View on GitHub
  Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
  ☆34Nov 13, 2023Updated 2 years ago
• kozmer / dcsync-bof

  View on GitHub
  dcsync bof
  ☆46Feb 13, 2026Updated last month
• EspressoCake / Firewall_Walker_BOF

  View on GitHub
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆109Oct 10, 2021Updated 4 years ago
• rvrsh3ll / RuralBishop

  View on GitHub
  D/Invoke port of UrbanBishop
  ☆30Dec 13, 2020Updated 5 years ago
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆133May 6, 2022Updated 3 years ago
• paranoidninja / BRC4-Seminar-Stage-I

  View on GitHub
  These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be…
  ☆22Aug 26, 2023Updated 2 years ago
• KingOfTheNOPs / ChangeWallpaper-BOF

  View on GitHub
  Cobalt Strike Beacon Object File to to change the user's desktop wallpaper
  ☆17Sep 15, 2023Updated 2 years ago
• xforcered / Detect-Hooks

  View on GitHub
  Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
  ☆102Jul 22, 2021Updated 4 years ago
• knavesec / BloodHound-Custom-Queries

  View on GitHub
  Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
  ☆12Jun 21, 2021Updated 4 years ago
• Patrick-DE / C2-logparser

  View on GitHub
  Parses logs created by Cobalt Strike, Brute Ratel, OC2 and creates an SQLite DB which can be used to create custom reports.
  ☆25Updated this week
• inzlain / sameuser

  View on GitHub
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Jul 13, 2022Updated 3 years ago
• WithSecureLabs / dotnet-gargoyle

  View on GitHub
  A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique
  ☆52Dec 6, 2018Updated 7 years ago
• delivr-to / MailCollector

  View on GitHub
  A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM
  ☆20Jul 19, 2025Updated 8 months ago
• crypt0p3g / bof-collection

  View on GitHub
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆187Dec 5, 2022Updated 3 years ago
• EspressoCake / BOF_Development_Docker

  View on GitHub
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆50Jul 10, 2023Updated 2 years ago
• CCob / chlonium

  View on GitHub
  Chromium Cookie import / export tool
  ☆11Jul 21, 2024Updated last year
• SolomonSklash / netntlm

  View on GitHub
  A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
  ☆37Jul 27, 2021Updated 4 years ago
• Cerbersec / KillDefenderBOF

  View on GitHub
  Beacon Object File PoC implementation of KillDefender
  ☆235Apr 12, 2022Updated 3 years ago
• fortalice / pyldapsearch

  View on GitHub
  Tool for issuing manual LDAP queries which offers bofhound compatible output
  ☆57Jun 2, 2024Updated last year
• kafkaesqu3 / SharpStomp

  View on GitHub
  Timestomping module: overwrite file create/modify times in .NET (no pinvoke)
  ☆27Dec 13, 2021Updated 4 years ago
• matro7sh / bof-collection

  View on GitHub
  collection of beacon object file (Cobalt strike)
  ☆12Jan 21, 2023Updated 3 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 3 years ago
• pwn1sher / CS-BOFs

  View on GitHub
  Collection of CobaltStrike beacon object files
  ☆105Feb 14, 2022Updated 4 years ago