Hagrid29/BOF-RemoteRegSave external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Hagrid29/BOF-RemoteRegSave

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Hagrid29/BOF-RemoteRegSave)

Close

Hagrid29 / BOF-RemoteRegSaveView on GitHubMore

• External links
• Readme badge

Cobalt Strike Beacon Object File (BOF) that uses RegConnectRegistryA + RegOpenKeyExA API to dump registry hives on remote computer

☆17Mar 4, 2023Updated 3 years ago

Alternatives and similar repositories for BOF-RemoteRegSave

Users that are interested in BOF-RemoteRegSave are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nick-frischkorn / SuspendEventLogBOF

  View on GitHub
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆29Jun 17, 2022Updated 3 years ago
• matro7sh / bof-collection

  View on GitHub
  collection of beacon object file (Cobalt strike)
  ☆12Jan 21, 2023Updated 3 years ago
• Octoberfest7 / Backstab_BOF

  View on GitHub
  Beacon Object File implementation of Yaxser's Backstab
  ☆15Mar 9, 2022Updated 4 years ago
• killvxk / TitanLdr_for_memory

  View on GitHub
  ☆14Mar 30, 2022Updated 3 years ago
• CCob / chlonium

  View on GitHub
  Chromium Cookie import / export tool
  ☆11Jul 21, 2024Updated last year
• Hagrid29 / BOF-CredUI

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆23Nov 23, 2022Updated 3 years ago
• Hagrid29 / BOF-SprayAD

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
  ☆47Mar 4, 2023Updated 3 years ago
• vysecurity / Nemesis-Download-Watcher

  View on GitHub
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆15Feb 29, 2024Updated 2 years ago
• trainr3kt / Readfile_BoF

  View on GitHub
  ☆22Jun 21, 2022Updated 3 years ago
• NVISOsecurity / cs2br-bof

  View on GitHub
  Run Cobalt Strike BOFs in Brute Ratel C4!
  ☆86Apr 15, 2025Updated 11 months ago
• KingOfTheNOPs / EnableWebDAVClient-BOF

  View on GitHub
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆23Sep 15, 2023Updated 2 years ago
• nick-frischkorn / TokenStripBOF

  View on GitHub
  Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process
  ☆47Jun 15, 2022Updated 3 years ago
• WKL-Sec / StackMask

  View on GitHub
  A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
  ☆66May 2, 2023Updated 2 years ago
• EspressoCake / BOF_NativeAPI_Definitions-VSCode

  View on GitHub
  A VSCode plugin to assist with BOF development.
  ☆37Aug 14, 2024Updated last year
• MaorSabag / fileSearcher

  View on GitHub
  A simple BOF (Beacon Object File) to search files in the system
  ☆15Dec 2, 2023Updated 2 years ago
• 0xthirteen / mtprocess

  View on GitHub
  Python script to leverage MSFT_MTProcess WMI class
  ☆40Sep 17, 2025Updated 6 months ago
• Ap3x / COFF-Loader

  View on GitHub
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆67Mar 6, 2026Updated 2 weeks ago
• 0xTriboulet / Red_Team_Code_Snippets

  View on GitHub
  random code snippets, useful for getting started
  ☆122Nov 29, 2025Updated 3 months ago
• snovvcrash / BOFs

  View on GitHub
  Beacon Object Files (not Buffer Overflows)
  ☆58Mar 6, 2023Updated 3 years ago
• R3alM0m1X82 / SpecterPortal

  View on GitHub
  Advanced post-exploitation framework designed for Red Team operations in Entra ID, Azure and Microsoft 365 environments.
  ☆43Dec 30, 2025Updated 2 months ago
• 0xRedpoll / ludus_cobaltstrike_teamserver

  View on GitHub
  Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers
  ☆18Mar 19, 2025Updated last year
• ewby / Mockingjay_BOF

  View on GitHub
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆158Nov 7, 2023Updated 2 years ago
• Hagrid29 / BOF-DCOMPotato-PrintNotify

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
  ☆98Mar 20, 2023Updated 3 years ago
• Nero22k / teamsc2

  View on GitHub
  Brute Ratel External C2 (Microsoft Teams)
  ☆38Dec 11, 2024Updated last year
• xRedCodex / BofArsenal

  View on GitHub
  The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23
  ☆23Jun 19, 2025Updated 9 months ago
• 0xflagplz / Xll-Payload-Generator

  View on GitHub
  Excel Add In Payload Generator
  ☆14Oct 9, 2023Updated 2 years ago
• REDMED-X / InjectKit

  View on GitHub
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆106Jan 24, 2024Updated 2 years ago
• Tw1sm / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆227Dec 3, 2025Updated 3 months ago
• EncodeGroup / BOF-RegSave

  View on GitHub
  Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
  ☆216Oct 8, 2020Updated 5 years ago
• RiccardoAncarani / BOFs

  View on GitHub
  Collection of Beacon Object Files (BOFs) for shells and lols
  ☆122Sep 14, 2021Updated 4 years ago
• T1erno / bin2shellcode

  View on GitHub
  C++ tool and library for converting .bin files to shellcode in multiple output formats.
  ☆34Aug 18, 2025Updated 7 months ago
• dmcxblue / AzureRedirector

  View on GitHub
  A C# project that builds a Web Application which redirects all HTTPS
  ☆26Feb 11, 2025Updated last year
• apokryptein / secinject

  View on GitHub
  Section Mapping Process Injection (secinject): Cobalt Strike BOF
  ☆103Jan 7, 2022Updated 4 years ago
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆133May 6, 2022Updated 3 years ago
• c3r3br4t3 / ShadowRDP

  View on GitHub
  ☆75Feb 4, 2024Updated 2 years ago
• iss4cf0ng / dotNetPELoader

  View on GitHub
  A C# PE loader for x64 and x86 PE files.
  ☆49Mar 9, 2026Updated 2 weeks ago
• tweathers-sec / doppelganger

  View on GitHub
  Doppelgänger is firmware that runs on ESP32 devices that can be embedded within commercially available RFID readers with the intent of ca…
  ☆20Dec 16, 2025Updated 3 months ago
• nopbrick / CobaltStrike-Redirector

  View on GitHub
  C2 redirector as a web API
  ☆10May 22, 2021Updated 4 years ago
• EspressoCake / Defender-Exclusions-Creator-BOF

  View on GitHub
  ☆83Nov 1, 2023Updated 2 years ago