NocteDefensor/SCCMDecryptor-BOF external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

NocteDefensor/SCCMDecryptor-BOF

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/NocteDefensor/SCCMDecryptor-BOF)

Close

NocteDefensor / SCCMDecryptor-BOFView on GitHubMore

• External links
• Readme badge

☆51Jun 28, 2025Updated 8 months ago

Alternatives and similar repositories for SCCMDecryptor-BOF

Users that are interested in SCCMDecryptor-BOF are comparing it to the libraries listed below

• G0ldenGunSec / SCCM_SQL_Collector

  View on GitHub
  PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph
  ☆24Aug 2, 2025Updated 6 months ago
• NocteDefensor / Sharelord

  View on GitHub
  .NET Assembly that creates network shares,sets ACE entries for directories, sets share perms, and deletes shares. Learning project for C#
  ☆10Oct 14, 2024Updated last year
• KingOfTheNOPs / Get-NetNTLM

  View on GitHub
  Internal Monologue BOF
  ☆79Dec 28, 2024Updated last year
• slygoo / pssrecon

  View on GitHub
  ☆40Oct 8, 2024Updated last year
• chryzsh / linux_bof

  View on GitHub
  ELF Beacon Object File (BOF) Template
  ☆19Nov 18, 2024Updated last year
• paranoidninja / BRC4-BOF-Artillery

  View on GitHub
  ☆146Nov 6, 2025Updated 3 months ago
• wotwot563 / aad_prt_bof

  View on GitHub
  ☆159Apr 17, 2024Updated last year
• sudonoodle / BOF-entra-authcode-flow

  View on GitHub
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆123Jan 17, 2026Updated last month
• buldansec / EnableEFS

  View on GitHub
  Enable EFS service as low priv user (PE & BOF)
  ☆21Jul 6, 2025Updated 7 months ago
• ZephrFish / SCCMSiteCodeHunter

  View on GitHub
  ☆16Dec 7, 2025Updated 2 months ago
• sud0Ru / NauthNRPC

  View on GitHub
  Enumerate Domain Users Without Authentication
  ☆281Apr 22, 2025Updated 10 months ago
• cmprmsd / cinelog

  View on GitHub
  Comprehensive logging of all terminal input and output for each session based on Asciinema and wild zsh + Python scripting.
  ☆42Jan 6, 2026Updated last month
• ibaiC / SafeHarbor-BOF

  View on GitHub
  Safe Harbor is a BOF that streamlines process reconnaissance for red team operations by identifying trusted, low-noise targets to maintai…
  ☆75Oct 27, 2025Updated 4 months ago
• trustedsec / CS_COFFLoader

  View on GitHub
  ☆130Dec 4, 2023Updated 2 years ago
• kapellos / LNKSmuggler

  View on GitHub
  A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
  ☆92Jan 8, 2025Updated last year
• zimnyaa / noWatch

  View on GitHub
  Implant drop-in for EDR testing
  ☆147Nov 15, 2023Updated 2 years ago
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆126Jan 23, 2025Updated last year
• WKL-Sec / docker-cobaltstrike

  View on GitHub
  Docker container for running CobaltStrike 4.7 and above
  ☆24Mar 20, 2025Updated 11 months ago
• lsecqt / SessionView

  View on GitHub
  A portable C# utility for enumerating local and remote windows sessions
  ☆55Jan 1, 2026Updated last month
• ibaiC / FriendlyFireBOF

  View on GitHub
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆57Apr 14, 2025Updated 10 months ago
• CodeXTF2 / WebcamBOF

  View on GitHub
  Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options
  ☆157Mar 26, 2025Updated 11 months ago
• Teach2Breach / noldr

  View on GitHub
  Dynamically resolve API function addresses at runtime in a secure manner.
  ☆72Nov 11, 2025Updated 3 months ago
• AlmondOffSec / DCOMRunAs

  View on GitHub
  Lateral movement with DCOM DLL hijacking
  ☆177Jul 4, 2025Updated 7 months ago
• itaymigdal / HubbleHub

  View on GitHub
  Explore and filter your GitHub starred repositories
  ☆25Dec 5, 2023Updated 2 years ago
• ColeHouston / theHandler-BOF

  View on GitHub
  Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.
  ☆38Aug 5, 2025Updated 6 months ago
• TierZeroSecurity / killerPID-BOF

  View on GitHub
  BOF to terminate a process via PID as argument
  ☆28Sep 7, 2025Updated 5 months ago
• 3lp4tr0n / RemoteMonologue

  View on GitHub
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆197Nov 4, 2025Updated 3 months ago
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆71Jan 27, 2025Updated last year
• edwig / HTTPSYS

  View on GitHub
  User-mode implementation of HTTP.SYS. Implements HTTP 1.1 of the "HTTP Server API 2.0" for web servers
  ☆44Feb 17, 2025Updated last year
• ZephrFish / QoL-BOFs

  View on GitHub
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆137Dec 7, 2025Updated 2 months ago
• coffeegist / bofhound

  View on GitHub
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆362Jan 29, 2026Updated last month
• 0xsp-SRD / MDE_Enum

  View on GitHub
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆211Jun 10, 2024Updated last year
• zh54321 / SnafflerParser

  View on GitHub
  Parses Snaffler output file and generate beautified outputs.
  ☆136Jan 4, 2026Updated last month
• rasta-mouse / LibGate

  View on GitHub
  A Crystal Palace shared library to resolve & perform syscalls
  ☆56Oct 29, 2025Updated 4 months ago
• scottctaylor12 / Red-Lambda

  View on GitHub
  Leveraging AWS Lambda Function URLs for C2 Redirection
  ☆45Aug 30, 2023Updated 2 years ago
• FatRodzianko / Get-Writable

  View on GitHub
  Find world writable directories that contain a .exe or .dll file
  ☆13Aug 31, 2021Updated 4 years ago
• xenoscr / SharpMailBOF

  View on GitHub
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆15Jun 24, 2021Updated 4 years ago
• slemire / bof-adopt

  View on GitHub
  BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆17Jul 22, 2022Updated 3 years ago
• Print3M / epic

  View on GitHub
  PIC shellcode (C/C++) development toolkit designed for malware developers.
  ☆121Dec 23, 2025Updated 2 months ago