Hypnoze57 / SharpHound4CobaltLinks
C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
☆56Updated 2 years ago
Alternatives and similar repositories for SharpHound4Cobalt
Users that are interested in SharpHound4Cobalt are comparing it to the libraries listed below
Sorting:
- Modified versions of the Cobalt Strike Process Injection Kit☆95Updated last year
- Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly☆117Updated 8 months ago
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆78Updated 2 years ago
- CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.☆24Updated 3 years ago
- ☆53Updated 3 years ago
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆40Updated last year
- ☆88Updated 2 years ago
- DLL Exports Extraction BOF with optional NTFS transactions.☆82Updated 3 years ago
- C# havoc implant☆99Updated 2 years ago
- Python3 HTTP Server with upload functionality☆13Updated last year
- Cobalt Strike BOF for quser.exe implementation using Windows API☆86Updated 2 years ago
- PowerShell script to terminate protected processes such as anti-malware and EDRs.☆26Updated 2 years ago
- ☆88Updated 2 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆81Updated last year
- Winsocket for Cobalt Strike.☆98Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- Secretsdump C# version only supporting local (live) operation☆49Updated 2 months ago
- A third-party Gopher Assassin for the Havoc Framework.☆44Updated last year
- Parses Cobalt Strike malleable C2 profiles.☆57Updated last week
- Tool to bypass LSA Protection (aka Protected Process Light)☆54Updated 5 months ago
- A simple BOF that frees UDRLs☆120Updated 3 years ago
- SAM Dumping in C#☆48Updated 5 months ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆84Updated 2 years ago
- CVE-2024-40711-exp☆42Updated 8 months ago
- Golng version of SharpDump that can be used to extract LSASS or any other proces. Provides token elevation prior to creating dump of high…☆21Updated 4 years ago
- A care package of useful bofs for red team engagments☆55Updated 6 months ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆67Updated 2 months ago
- ProcExp Driver (Ab)use☆22Updated 2 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆80Updated 3 years ago
- ☆141Updated 3 years ago