JamesCooteUK / BOFsLinks
Collection of BOFs for Cobalt Strike
☆34Updated 2 years ago
Alternatives and similar repositories for BOFs
Users that are interested in BOFs are comparing it to the libraries listed below
Sorting:
- Extended Process List (Search functionality)☆29Updated 4 years ago
- ☆21Updated 3 years ago
- ☆25Updated 3 years ago
- ☆59Updated 3 years ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆54Updated 5 years ago
- LSASS enumeration like pypykatz written in C-Lang☆20Updated 3 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆33Updated last year
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆31Updated last year
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆33Updated 2 years ago
- aggressor and pycobalt scripts.☆18Updated 4 years ago
- ☆30Updated 2 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆29Updated 5 years ago
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆8Updated 2 years ago
- Dump Teams conversations☆19Updated 4 years ago
- ☆43Updated last year
- LoadLibrary for offensive operations☆33Updated 3 years ago
- ☆36Updated last year
- ☆38Updated 3 years ago
- ☆23Updated 3 years ago
- ☆37Updated 4 years ago
- A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.☆47Updated 4 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆27Updated 3 years ago
- Strstr with user-supplied needle and filename as a BOF.☆32Updated 3 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆19Updated 4 years ago
- Beacon Object File implementation of Yaxser's Backstab☆15Updated 3 years ago
- all credits go to @mgeeky☆64Updated 3 years ago
- ☆52Updated 3 years ago
- RDPThief donut shellcode inject into mstsc☆87Updated 4 years ago
- WhoAmI by asking the LDAP service on a domain controller.☆63Updated 3 years ago
- An injector that aims to be stealthy by using non suspicious API calls. Inspired by (https://github.com/FuzzySecurity/Sharp-Suite/tree/ma…☆24Updated 5 years ago