Ne0nd0g/go-coff external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Ne0nd0g/go-coff

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Ne0nd0g/go-coff)

Close

Ne0nd0g / go-coffView on GitHubMore

• External links
• Readme badge

Load and execute a common object file format (COFF) in the current process

☆30Mar 9, 2024Updated 2 years ago

Alternatives and similar repositories for go-coff

Users that are interested in go-coff are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• pard0p / PICO-Implant

  View on GitHub
  PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…
  ☆49Nov 9, 2025Updated 5 months ago
• Ne0nd0g / winhttp

  View on GitHub
  A library to make HTTP requests with the Windows winhttp API
  ☆25Feb 8, 2024Updated 2 years ago
• buldansec / EnableEFS

  View on GitHub
  Enable EFS service as low priv user (PE & BOF)
  ☆21Jul 6, 2025Updated 9 months ago
• vmsplit / nebula

  View on GitHub
  arm64 linux position-independent shellcode framework
  ☆30Dec 12, 2025Updated 4 months ago
• praetorian-inc / goffloader

  View on GitHub
  A Go implementation of Cobalt Strike style BOF/COFF loaders.
  ☆269Feb 22, 2025Updated last year
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• latortuga71 / GOCoffLoader

  View on GitHub
  Its a coff loader ported to go
  ☆20Oct 2, 2022Updated 3 years ago
• 200ug / airborne

  View on GitHub
  Shellcode reflective DLL injection in Rust
  ☆27Dec 26, 2025Updated 3 months ago
• EvanMcBroom / fuse-loader

  View on GitHub
  Load a dynamic library from memory using a fuse mount
  ☆32Sep 15, 2023Updated 2 years ago
• audibleblink / getsystem

  View on GitHub
  Small utility package for manipulating Windows process tokens
  ☆26Apr 26, 2022Updated 3 years ago
• outflanknl / macho-loader

  View on GitHub
  Position-independent Reflective Loader for macOS
  ☆121Feb 19, 2026Updated last month
• Ne0nd0g / go-clr

  View on GitHub
  A PoC package for hosting the CLR and executing .NET from Go
  ☆78Jul 9, 2024Updated last year
• listinvest / undonut

  View on GitHub
  Unpacker for donut shellcode
  ☆21Jun 20, 2020Updated 5 years ago
• moloch-- / memmod

  View on GitHub
  Fork of Wireguard's Memmod
  ☆17Feb 25, 2023Updated 3 years ago
• silentwarble / Hannibal

  View on GitHub
  Mythic C2 Agent written in x64 PIC C
  ☆87Jan 29, 2025Updated last year
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• Cracked5pider / kaine-assembly

  View on GitHub
  a demo module for the kaine agent to execute and inject assembly modules
  ☆41Aug 28, 2024Updated last year
• silentwarble / PIC-Library

  View on GitHub
  A collection of position independent coding resources
  ☆111Nov 15, 2025Updated 5 months ago
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆72Jan 27, 2025Updated last year
• joaoviictorti / coffeeldr

  View on GitHub
  A COFF Loader written in Rust
  ☆140Dec 1, 2025Updated 4 months ago
• lesnuages / go-execute-assembly

  View on GitHub
  Allow a Go process to dynamically load .NET assemblies
  ☆150Mar 28, 2020Updated 6 years ago
• dr4ndrei / OHFFLdr

  View on GitHub
  One-header configurable C++20 COFF loader
  ☆19Jul 21, 2025Updated 8 months ago
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆150Apr 18, 2025Updated 11 months ago
• skelsec / anfs

  View on GitHub
  Asynchronous NFSv3 client in pure Python
  ☆29Jul 16, 2025Updated 8 months ago
• xelemental / Mal-LNK-Generator

  View on GitHub
  ☆38Mar 28, 2025Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• almounah / hardwareturningpoint

  View on GitHub
  HardwareTurningPoint, Fully Go Compatible Hardware Breakpoint
  ☆16Jan 30, 2025Updated last year
• FalconForceTeam / BOF2shellcode

  View on GitHub
  POC tool to convert CobaltStrike BOF files to raw shellcode
  ☆222Nov 5, 2021Updated 4 years ago
• jojonas / db_nmap

  View on GitHub
  Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.
  ☆19Nov 6, 2024Updated last year
• django-88 / NomadScanner

  View on GitHub
  ☆164Mar 20, 2026Updated 3 weeks ago
• EgeBalci / syscall_api

  View on GitHub
  ☆38Jun 5, 2023Updated 2 years ago
• Ap3x / COFF-Loader

  View on GitHub
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆70Mar 6, 2026Updated last month
• Meowmycks / koneko

  View on GitHub
  Robust Cobalt Strike shellcode loader with multiple advanced evasion features
  ☆204Apr 21, 2025Updated 11 months ago
• chryzsh / linux_bof

  View on GitHub
  ELF Beacon Object File (BOF) Template
  ☆19Nov 18, 2024Updated last year
• susMdT / LoudSunRun

  View on GitHub
  Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven
  ☆267Oct 16, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• kyleavery / pendulum

  View on GitHub
  Linux Sleep Obfuscation
  ☆114Jan 7, 2024Updated 2 years ago
• ropnop / go-clr

  View on GitHub
  A PoC package for hosting the CLR and executing .NET from Go
  ☆229Nov 10, 2022Updated 3 years ago
• Yaxser / COFFLoader2

  View on GitHub
  Load and execute COFF files and Cobalt Strike BOFs in-memory
  ☆225Sep 13, 2022Updated 3 years ago
• Mav3rick33 / ZenLdr

  View on GitHub
  Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature
  ☆101Feb 28, 2023Updated 3 years ago
• fortra / hw-call-stack

  View on GitHub
  Use hardware breakpoints to spoof the call stack for both syscalls and API calls
  ☆203Jun 6, 2024Updated last year
• xforcered / Detect-Hooks

  View on GitHub
  Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
  ☆102Jul 22, 2021Updated 4 years ago
• f1zm0 / acheron

  View on GitHub
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆378Jun 13, 2023Updated 2 years ago