Octoberfest7/Proxy_Egress_Persistence external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Octoberfest7/Proxy_Egress_Persistence

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Octoberfest7/Proxy_Egress_Persistence)

Close

Octoberfest7 / Proxy_Egress_PersistenceView on GitHubMore

• External links
• Readme badge

A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies

☆34Sep 15, 2022Updated 3 years ago

Alternatives and similar repositories for Proxy_Egress_Persistence

Users that are interested in Proxy_Egress_Persistence are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆95Mar 8, 2023Updated 3 years ago
• Octoberfest7 / Cohab_Processes

  View on GitHub
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆85Jan 6, 2023Updated 3 years ago
• 0xe7 / EventSniper

  View on GitHub
  ☆20Nov 6, 2023Updated 2 years ago
• boku7 / halosgate-ps

  View on GitHub
  Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes
  ☆107Mar 8, 2023Updated 3 years ago
• codewhitesec / daphne

  View on GitHub
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆19Aug 3, 2023Updated 2 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• Octoberfest7 / CS_Uploads_Tracker

  View on GitHub
  Aggressor script add-in for CobaltStrike to track file uploads
  ☆48Nov 7, 2022Updated 3 years ago
• Octoberfest7 / DropSpawn_BOF

  View on GitHub
  CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
  ☆286Jun 8, 2023Updated 2 years ago
• apokryptein / secinject

  View on GitHub
  Section Mapping Process Injection (secinject): Cobalt Strike BOF
  ☆103Jan 7, 2022Updated 4 years ago
• FalconForceTeam / BOF2shellcode

  View on GitHub
  POC tool to convert CobaltStrike BOF files to raw shellcode
  ☆222Nov 5, 2021Updated 4 years ago
• thefLink / Memfiddler

  View on GitHub
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Nov 17, 2019Updated 6 years ago
• xforcered / BOFMask

  View on GitHub
  ☆128Jun 28, 2023Updated 2 years ago
• EspressoCake / Firewall_Walker_BOF

  View on GitHub
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆113Oct 10, 2021Updated 4 years ago
• EspressoCake / DLL_Version_Enumeration_BOF

  View on GitHub
  A BOF for enumerating version information for DLLs associated for a Beacon process.
  ☆16Nov 23, 2021Updated 4 years ago
• nick-frischkorn / SuspendEventLogBOF

  View on GitHub
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆29Jun 17, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• pwn1sher / uuid-loader

  View on GitHub
  UUID based Shellcode loader for your favorite C2
  ☆86Dec 8, 2021Updated 4 years ago
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF

  View on GitHub
  ☆176Mar 27, 2023Updated 3 years ago
• NotoriousRebel / ConfigPersist

  View on GitHub
  Modifies machine.config for persistence after installing signed .net assembly onto GAC
  ☆13Mar 17, 2022Updated 4 years ago
• jonny-jhnson / ProcCallback

  View on GitHub
  An example of how a driver can register a handle creation callback.
  ☆16Jun 12, 2023Updated 2 years ago
• X-C3LL / wfp-reader

  View on GitHub
  Proof of concept - Covert Channel using Windows Filtering Platform (C#)
  ☆21Aug 29, 2021Updated 4 years ago
• Tw1sm / HTTPS-MalleableC2-Config

  View on GitHub
  Create Cobalt Strike malleable C2 profiles with HTTPS configs
  ☆18May 23, 2020Updated 5 years ago
• nickvourd / random_c2_profile

  View on GitHub
  Cobalt Strike random C2 Profile generator
  ☆16Apr 3, 2026Updated last week
• vestjoe / cobaltstrike_services

  View on GitHub
  AutoStart teamserver and listeners with services
  ☆75Dec 23, 2021Updated 4 years ago
• t3hbb / citrixphishlet

  View on GitHub
  Citrix Phishlet
  ☆24Feb 2, 2021Updated 5 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• connormcgarr / cThreadHijack

  View on GitHub
  Beacon Object File (BOF) for remote process injection via thread hijacking
  ☆221Jan 13, 2021Updated 5 years ago
• EspressoCake / Toggle_Token_Privileges_BOF

  View on GitHub
  Syscall BOF to arbitrarily add/detract process token privilege rights.
  ☆61Jul 10, 2024Updated last year
• EspressoCake / Process_Protection_Level_BOF

  View on GitHub
  ☆61Aug 30, 2021Updated 4 years ago
• EspressoCake / DLL-Hijack-Search-Order-BOF

  View on GitHub
  DLL Hijack Search Order Enumeration BOF
  ☆149Nov 3, 2021Updated 4 years ago
• HuskyHacks / RustyTokenManipulation

  View on GitHub
  just manipulatin these here tokens yes sir nothing weird
  ☆21Apr 18, 2022Updated 3 years ago
• ScriptIdiot / sleepmask_ekko_cfg

  View on GitHub
  Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
  ☆49Mar 15, 2023Updated 3 years ago
• 0x3rhy / GetClipboard

  View on GitHub
  Cobalt Strike Get clipboard plugin
  ☆15Aug 11, 2023Updated 2 years ago
• ChoiSG / havoc2nginx

  View on GitHub
  havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…
  ☆12May 8, 2023Updated 2 years ago
• Mr-Un1k0d3r / AMSI-ETW-Patch

  View on GitHub
  Patch AMSI and ETW
  ☆250May 8, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• boku7 / whereami

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environment strings without touching any DLL…
  ☆183Mar 13, 2023Updated 3 years ago
• WithSecureLabs / dotnet-gargoyle

  View on GitHub
  A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique
  ☆52Dec 6, 2018Updated 7 years ago
• frkngksl / ParallelNimcalls

  View on GitHub
  Nim version of MDSec's Parallel Syscall PoC
  ☆124Apr 4, 2026Updated last week
• Verizon / redshell

  View on GitHub
  An interactive command prompt for red teaming and pentesting. Automatically pushes commands through SOCKS4/5 proxies via proxychains. Opt…
  ☆221Aug 23, 2022Updated 3 years ago
• ThunderGunExpress / ThunderMSI

  View on GitHub
  ☆28Dec 28, 2017Updated 8 years ago
• pwn1sher / CS-BOFs

  View on GitHub
  Collection of CobaltStrike beacon object files
  ☆105Feb 14, 2022Updated 4 years ago
• S4ntiagoP / freeBokuLoader

  View on GitHub
  A simple BOF that frees UDRLs
  ☆122May 29, 2022Updated 3 years ago