A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.
☆76Aug 24, 2025Updated 8 months ago
Alternatives and similar repositories for bof_oxide
Users that are interested in bof_oxide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of sample code used in some experiments with Sliver C2☆17Mar 28, 2023Updated 3 years ago
- It's what all the kids are talking about☆12Apr 25, 2023Updated 3 years ago
- A simple website to act as a store for havoc modules and extensions☆30Jan 20, 2025Updated last year
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos…☆44Jan 15, 2026Updated 4 months ago
- Rust template/library for implementing your own COFF loader☆72Jan 27, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆87Apr 26, 2025Updated last year
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- A simple research-focused AES-based shellcode loader demonstrating in-memory execution and NTAPI techniques to help understand how custom…☆48Feb 19, 2026Updated 3 months ago
- WebClientRelayUp - an universal no-fix local privilege escalation in domain-joined windows workstations in default configuration.☆84Apr 28, 2026Updated 3 weeks ago
- Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs☆24Jul 11, 2025Updated 10 months ago
- Process dumper wrote in rust.☆14Sep 16, 2024Updated last year
- Adversary Emulation Framework☆131Jul 1, 2025Updated 10 months ago
- A pointer encryption library intended for Red Team implant design in Rust.☆68Oct 1, 2025Updated 7 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆104Jul 9, 2025Updated 10 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A COFF Loader written in Rust☆141Dec 1, 2025Updated 5 months ago
- Firefox webInjector capable of injecting codes into webpages using a mitmproxy.☆42Oct 30, 2022Updated 3 years ago
- Enable EFS service as low priv user (PE & BOF)☆21Jul 6, 2025Updated 10 months ago
- CyberShield 2025 Intro to EDR Evasion Class☆18Jun 3, 2025Updated 11 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆63Nov 8, 2024Updated last year
- Generate an Alphabetical Polymorphic Shellcode☆140Aug 19, 2025Updated 9 months ago
- Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.☆216Oct 9, 2022Updated 3 years ago
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆154Apr 18, 2025Updated last year
- PoC for generating bthprops.cpl module designed to be loaded by Fsquirt.exe LOLBin☆123Jan 4, 2026Updated 4 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.☆55Jun 2, 2025Updated 11 months ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- ☆52May 4, 2025Updated last year
- A Reflective Loader for macOS☆149Jul 20, 2025Updated 10 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆107Feb 25, 2025Updated last year
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆68Dec 25, 2025Updated 4 months ago
- Call Stack Spoofing for Rust☆217Jan 28, 2026Updated 3 months ago
- A different approach to writing BOFs in rust.☆21Aug 20, 2025Updated 9 months ago
- process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread☆31Jan 9, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Generate Secure, Polymorphic, Evasive (lol) Payloads☆32Oct 2, 2025Updated 7 months ago
- Cobalt Strike BOF for evasive .NET assembly execution☆319Mar 31, 2025Updated last year
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆130Jan 17, 2026Updated 4 months ago
- C2-agnostic BOF collection, categorized by attack chain phase. Designed to be small and modular, allowing for quick execution and automat…☆304Updated this week
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆118Dec 21, 2025Updated 5 months ago
- various methods of making API calls☆19Feb 1, 2025Updated last year
- A Cobalt Strike BOF implementation of the SilentHarvest registry dumping technique☆177Apr 14, 2026Updated last month