FalconForceTeam / bof-winrm-plugin-jumpLinks
☆27Updated 6 months ago
Alternatives and similar repositories for bof-winrm-plugin-jump
Users that are interested in bof-winrm-plugin-jump are comparing it to the libraries listed below
Sorting:
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆60Updated last year
- ☆30Updated 4 months ago
- A VSCode plugin to assist with BOF development.☆37Updated 11 months ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- Cobalt Strike UDRL for memory scanner evasion.☆51Updated last year
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated last year
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Updated 6 months ago
- havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…☆12Updated 2 years ago
- ☆28Updated last year
- An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.☆25Updated 2 months ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆53Updated 3 months ago
- A work in progress BOF/COFF loader in Rust☆51Updated 2 years ago
- A bunch of shenanigans using functions, VEH and more☆30Updated last month
- Example of using Sleep to create better named pipes.☆41Updated 2 years ago
- Post-Ex BOF tooling for Hannibal☆24Updated 8 months ago
- ☆22Updated last year
- EmbedExeLnk by x86matthew modified by d4rkiZ☆42Updated 2 years ago
- A simple BOF (Beacon Object File) to search files in the system☆14Updated last year
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆49Updated 6 months ago
- BypassCredGuard CS BOF☆43Updated 6 months ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆22Updated 3 months ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆43Updated last year
- Beacon Object Files (not Buffer Overflows)☆56Updated 2 years ago
- ☆49Updated 3 weeks ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆22Updated last year
- Hooked create process injection for meterpreter☆23Updated 4 years ago
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆36Updated 3 months ago
- ☆43Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- ☆34Updated 3 months ago