NtDallas/BOF_RunPe external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

NtDallas/BOF_RunPe

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/NtDallas/BOF_RunPe)

Close

NtDallas / BOF_RunPeView on GitHubMore

• External links
• Readme badge

BOF to run PE in Cobalt Strike Beacon without console creation

☆198Nov 23, 2025Updated 6 months ago

Alternatives and similar repositories for BOF_RunPe

Users that are interested in BOF_RunPe are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• HulkOperator / CallStackSpoofer

  View on GitHub
  ☆70Dec 19, 2024Updated last year
• NtDallas / KrakenMask

  View on GitHub
  Sleep obfuscation
  ☆274Dec 13, 2024Updated last year
• NtDallas / OdinLdr

  View on GitHub
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆189Jan 17, 2026Updated 4 months ago
• SAERXCIT / LibTP_Gadget

  View on GitHub
  Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.
  ☆23Nov 11, 2025Updated 7 months ago
• NtDallas / BOF_ExecuteAssembly

  View on GitHub
  Beacon Object File for Cobalt Strike that executes .NET assemblies in beacon with evasion techniques.
  ☆194Dec 23, 2025Updated 5 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆154Apr 18, 2025Updated last year
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆158Jul 23, 2025Updated 10 months ago
• Octoberfest7 / enumhandles_BOF

  View on GitHub
  ☆127Sep 1, 2024Updated last year
• CICADA8-Research / RpcMotion

  View on GitHub
  Execute commands, in/exfiltrate files using your custom RPC Server
  ☆70Jan 13, 2026Updated 4 months ago
• deh00ni / NtDumpBOF

  View on GitHub
  ☆100Sep 1, 2024Updated last year
• fortra / No-Consolation

  View on GitHub
  A BOF that runs unmanaged PEs inline
  ☆702Oct 23, 2024Updated last year
• 0xEr3bus / RdpStrike

  View on GitHub
  Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
  ☆251Jun 11, 2024Updated 2 years ago
• naksyn / DojoLoader

  View on GitHub
  Generic PE loader for fast prototyping evasion techniques
  ☆246Jul 2, 2024Updated last year
• Faran-17 / Hellshazzard

  View on GitHub
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆84Aug 13, 2024Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• 0xTriboulet / InlineExecuteEx

  View on GitHub
  A BOF that's a BOF Loader and more
  ☆208Apr 6, 2026Updated 2 months ago
• Tw1sm / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆241Dec 3, 2025Updated 6 months ago
• mabangde / ChromeHistory_bof

  View on GitHub
  获取chrome 浏览器记录
  ☆43Sep 6, 2025Updated 9 months ago
• WKL-Sec / LayeredSyscall

  View on GitHub
  Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …
  ☆308Jul 31, 2024Updated last year
• kozmer / aad-bofs

  View on GitHub
  ☆139Nov 17, 2025Updated 6 months ago
• Paradoxis / ADSyncDump-BOF

  View on GitHub
  The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…
  ☆176Sep 3, 2025Updated 9 months ago
• boku7 / StringReaper

  View on GitHub
  Reaping treasures from strings in remote processes memory
  ☆288Feb 8, 2025Updated last year
• KuwaitiSt / Astral_Projection

  View on GitHub
  ☆69Apr 20, 2026Updated last month
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆133Jan 23, 2025Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• rasta-mouse / process-inject-kit

  View on GitHub
  Port of Cobalt Strike's Process Inject Kit
  ☆194Dec 1, 2024Updated last year
• nickzer0 / PersisTask-BOF

  View on GitHub
  A BOF to create a scheduled task using a COM object.
  ☆19Dec 3, 2024Updated last year
• leftp / RegPersist

  View on GitHub
  a BOF implementation of various registry persistence methods
  ☆97Nov 11, 2025Updated 7 months ago
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆111Aug 21, 2024Updated last year
• M1ndo / WerDump

  View on GitHub
  A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass
  ☆171Sep 22, 2025Updated 8 months ago
• Sh3lldon / HellsVectoredGate

  View on GitHub
  ☆55Oct 13, 2025Updated 7 months ago
• sudonoodle / BOF-entra-authcode-flow

  View on GitHub
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆131Jan 17, 2026Updated 4 months ago
• susMdT / AceLdr

  View on GitHub
  Cobalt Strike UDRL for memory scanner evasion.
  ☆52Dec 4, 2023Updated 2 years ago
• EspressoCake / cIdentifyServiceDependencies_BOF

  View on GitHub
  Beacon Object File (BOF) for identifying dependent child services of a given parent.
  ☆19Jun 20, 2025Updated 11 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• Cobalt-Strike / icmp-udc2

  View on GitHub
  UDC2 implementation that provides an ICMP C2 channel
  ☆123Nov 24, 2025Updated 6 months ago
• Cobalt-Strike / obfuscator-llvm

  View on GitHub
  ☆58Jan 15, 2024Updated 2 years ago
• WKL-Sec / slack-udc2

  View on GitHub
  Cobalt Strike UDC2 implementation that provides an Slack C2 channel
  ☆69Jan 5, 2026Updated 5 months ago
• dis0rder0x00 / stillepost

  View on GitHub
  Using Chromium-based browsers as a proxy for C2 traffic.
  ☆152Dec 6, 2025Updated 6 months ago
• RalfHacker / Kerbeus-BOF

  View on GitHub
  BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
  ☆593Nov 23, 2025Updated 6 months ago
• dmcxblue / SharpGhostTask

  View on GitHub
  A C# port from Invoke-GhostTask
  ☆121Jan 5, 2024Updated 2 years ago
• Cracked5pider / earlycascade-injection

  View on GitHub
  early cascade injection PoC based on Outflanks blog post
  ☆239Nov 7, 2024Updated last year