Octoberfest7/JumpSession_BOF

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Octoberfest7/JumpSession_BOF)

Octoberfest7 / JumpSession_BOF

Beacon Object File allowing creation of Beacons in different sessions.

☆83

Alternatives and similar repositories for JumpSession_BOF

Users that are interested in JumpSession_BOF are comparing it to the libraries listed below

Sorting:

Octoberfest7 / EventViewerUAC_BOF
View on GitHub
Beacon Object File implementation of Event Viewer deserialization UAC bypass
☆133May 6, 2022Updated 3 years ago
Octoberfest7 / KDStab
View on GitHub
BOF combination of KillDefender and Backstab
☆167Mar 23, 2023Updated 2 years ago
FalconForceTeam / SysWhispers2BOF
View on GitHub
Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs
☆125May 24, 2022Updated 3 years ago
S4ntiagoP / freeBokuLoader
View on GitHub
A simple BOF that frees UDRLs
☆122May 29, 2022Updated 3 years ago
apokryptein / secinject
View on GitHub
Section Mapping Process Injection (secinject): Cobalt Strike BOF
☆103Jan 7, 2022Updated 4 years ago
netero1010 / Quser-BOF
View on GitHub
Cobalt Strike BOF for quser.exe implementation using Windows API
☆87Mar 22, 2023Updated 2 years ago
N4kedTurtle / PersistBOF
View on GitHub
A BOF to automate common persistence tasks for red teamers
☆297Mar 7, 2023Updated 3 years ago
guervild / InlineZipper
View on GitHub
☆25Feb 9, 2022Updated 4 years ago
Octoberfest7 / Backstab_BOF
View on GitHub
Beacon Object File implementation of Yaxser's Backstab
☆15Mar 9, 2022Updated 4 years ago
NVISOsecurity / CobaltWhispers
View on GitHub
CobaltWhispers is an aggressor script that utilizes a collection of Beacon Object Files (BOF) for Cobalt Strike to perform process inject…
☆242Jan 4, 2023Updated 3 years ago
Octoberfest7 / Mutants_Sessions_Self-Deletion
View on GitHub
Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.
☆129Apr 24, 2022Updated 3 years ago
pwn1sher / CS-BOFs
View on GitHub
Collection of CobaltStrike beacon object files
☆105Feb 14, 2022Updated 4 years ago
N7WEra / BofAllTheThings
View on GitHub
Creating a repository with all public Beacon Object Files (BoFs)
☆604Mar 2, 2026Updated 2 weeks ago
Henkru / cs-token-vault
View on GitHub
In-memory token vault BOF for Cobalt Strike
☆149Aug 18, 2022Updated 3 years ago
Cracked5pider / CoffeeLdr
View on GitHub
Beacon Object File Loader
☆293Dec 3, 2023Updated 2 years ago
guervild / BOFs
View on GitHub
Cobalt Strike Beacon Object Files
☆167May 2, 2022Updated 3 years ago
EspressoCake / DLL-Exports-Extraction-BOF
View on GitHub
DLL Exports Extraction BOF with optional NTFS transactions.
☆90Nov 5, 2021Updated 4 years ago
EspressoCake / BeaconDownloadSync
View on GitHub
☆94May 14, 2022Updated 3 years ago
netero1010 / TrustedPath-UACBypass-BOF
View on GitHub
Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.…
☆146Aug 16, 2021Updated 4 years ago
outflanknl / FindObjects-BOF
View on GitHub
A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
☆275May 3, 2023Updated 2 years ago
anthemtotheego / Detect-Hooks
View on GitHub
Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
☆158Jul 22, 2021Updated 4 years ago
OG-Sadpanda / SharpZippo
View on GitHub
List/Read contents of Zip files (in memory and without extraction) using CobaltStrike's Execute-Assembly
☆61May 24, 2022Updated 3 years ago
EspressoCake / DLL-Hijack-Search-Order-BOF
View on GitHub
DLL Hijack Search Order Enumeration BOF
☆149Nov 3, 2021Updated 4 years ago
passthehashbrowns / BOFMask
View on GitHub
☆125Jun 28, 2023Updated 2 years ago
rsmudge / unhook-bof
View on GitHub
Remove API hooks from a Beacon process.
☆282Sep 18, 2021Updated 4 years ago
Cracked5pider / KaynStrike
View on GitHub
UDRL for CS
☆443Dec 3, 2023Updated 2 years ago
connormcgarr / tgtdelegation
View on GitHub
tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"
☆178Nov 26, 2021Updated 4 years ago
boku7 / xPipe
View on GitHub
Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
☆95Mar 8, 2023Updated 3 years ago
Octoberfest7 / BeatRev
View on GitHub
POC for frustrating/defeating Malware Analysts
☆156Jun 12, 2022Updated 3 years ago
securifybv / Visual-Studio-BOF-template
View on GitHub
A Visual Studio template used to create Cobalt Strike BOFs
☆325Nov 17, 2021Updated 4 years ago
cube0x0 / BofRoast
View on GitHub
Beacon Object Files for roasting Active Directory
☆236Feb 21, 2022Updated 4 years ago
EspressoCake / HandleKatz_BOF
View on GitHub
A BOF port of the research of @thefLinkk and @codewhitesec
☆100Oct 12, 2021Updated 4 years ago
Octoberfest7 / Inline-Execute-PE
View on GitHub
Execute unmanaged Windows executables in CobaltStrike Beacons
☆715Mar 4, 2023Updated 3 years ago
Octoberfest7 / CS_Uploads_Tracker
View on GitHub
Aggressor script add-in for CobaltStrike to track file uploads
☆48Nov 7, 2022Updated 3 years ago
connormcgarr / cThreadHijack
View on GitHub
Beacon Object File (BOF) for remote process injection via thread hijacking
☆220Jan 13, 2021Updated 5 years ago
EspressoCake / Self_Deletion_BOF
View on GitHub
BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs
☆186Oct 3, 2021Updated 4 years ago
boku7 / spawn
View on GitHub
Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
☆469Mar 8, 2023Updated 3 years ago
waldo-irc / LockdExeDemo
View on GitHub
A demo of the relevant blog post: https://www.arashparsa.com/hook-heaps-and-live-free/
☆193Sep 9, 2021Updated 4 years ago
zimnyaa / noWatch
View on GitHub
Implant drop-in for EDR testing
☆147Nov 15, 2023Updated 2 years ago