An example reference design for a proposed BOF PE
☆200Jan 23, 2026Updated last month
Alternatives and similar repositories for BOF-PE
Users that are interested in BOF-PE are comparing it to the libraries listed below
Sorting:
- A COFF Loader written in Rust☆136Dec 1, 2025Updated 3 months ago
- BOF to decrypt Signal Desktop chat logs☆71Feb 20, 2025Updated last year
- A BOF that runs unmanaged PEs inline☆680Oct 23, 2024Updated last year
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆158Mar 26, 2025Updated 11 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆104Feb 25, 2025Updated last year
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆123Jan 17, 2026Updated last month
- ☆126Jan 23, 2025Updated last year
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆117Jan 20, 2025Updated last year
- BOF with Synthetic Stackframe☆225Oct 30, 2025Updated 4 months ago
- The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23☆23Jun 19, 2025Updated 8 months ago
- Linker for Beacon Object Files☆155Updated this week
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆195Feb 6, 2025Updated last year
- A set of programs for analyzing common vulnerabilities in COM☆248Sep 8, 2024Updated last year
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Apr 14, 2025Updated 10 months ago
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆137Apr 18, 2025Updated 10 months ago
- Reverse engineering winapi function loadlibrary.☆233Apr 17, 2023Updated 2 years ago
- Call Stack Spoofing for Rust☆210Jan 28, 2026Updated last month
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆199Dec 30, 2025Updated 2 months ago
- A PowerShell console in C/C++ with all the security features disabled☆364Oct 14, 2025Updated 4 months ago
- A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and …☆334Mar 6, 2025Updated 11 months ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- ☆50May 4, 2025Updated 9 months ago
- Cobalt Strike BOF for evasive .NET assembly execution☆308Mar 31, 2025Updated 11 months ago
- ☆126Sep 1, 2024Updated last year
- Reaping treasures from strings in remote processes memory☆285Feb 8, 2025Updated last year
- Port of Cobalt Strike's Process Inject Kit☆191Dec 1, 2024Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆281Sep 18, 2024Updated last year
- A BOF to enumerate system process, their protection levels, and more.☆125Nov 27, 2024Updated last year
- Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.☆604Feb 2, 2026Updated 3 weeks ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆186Jan 17, 2026Updated last month
- A reflective DLL development template for the Rust programming language☆114Nov 4, 2025Updated 3 months ago
- Mythic C2 Agent written in x64 PIC C☆85Jan 29, 2025Updated last year
- Sleep obfuscation☆268Dec 13, 2024Updated last year
- Mentally ill EtwTi parser☆68Jan 11, 2026Updated last month
- Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven☆261Oct 16, 2024Updated last year
- Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread☆263Aug 31, 2025Updated 6 months ago
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆199Jun 17, 2025Updated 8 months ago
- Position-independent Reflective Loader for macOS☆112Feb 19, 2026Updated last week
- Host CLR and run .NET binaries using Rust☆151Dec 23, 2025Updated 2 months ago