PrincipleCheck/KslKatzBof external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PrincipleCheck/KslKatzBof

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PrincipleCheck/KslKatzBof)

Close

PrincipleCheck / KslKatzBofView on GitHubMore

• External links
• Readme badge

☆77Apr 8, 2026Updated 2 weeks ago

Alternatives and similar repositories for KslKatzBof

Users that are interested in KslKatzBof are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• zux0x3a / Phantom

  View on GitHub
  Phantom is project created to perform loading and executing .NET assemblies directly in memory within an IIS environment running in full‑…
  ☆103Mar 10, 2026Updated last month
• incursi0n / BlueSAM

  View on GitHub
  A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.
  ☆146Apr 15, 2026Updated last week
• h41th / Simple-Crystal-Palace-RDLL-template-for-Adaptix

  View on GitHub
  ☆43Feb 12, 2026Updated 2 months ago
• SAERXCIT / LibTP_Gadget

  View on GitHub
  Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.
  ☆20Nov 11, 2025Updated 5 months ago
• acedef / SynthAPT

  View on GitHub
  Generate malware with AI
  ☆219Apr 14, 2026Updated 2 weeks ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• Muz1K1zuM / UnderlayCopy_bof

  View on GitHub
  BOF for Havoc that copies locked Windows files (SAM, SYSTEM, NTDS.dit) via raw MFT parsing — no VSS, no Registry APIs, no PowerShell
  ☆123Apr 6, 2026Updated 3 weeks ago
• jhalon / cSessionHop

  View on GitHub
  Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM
  ☆68Dec 25, 2025Updated 4 months ago
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆108Aug 21, 2024Updated last year
• kozmer / sigdream

  View on GitHub
  sigreturn-oriented(SROP) based sleep obfuscation poc for Linux
  ☆68Dec 15, 2025Updated 4 months ago
• lsecqt / SessionView

  View on GitHub
  A portable C# utility for enumerating local and remote windows sessions
  ☆57Jan 1, 2026Updated 3 months ago
• MHaggis / NEBULA

  View on GitHub
  Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques
  ☆113Dec 28, 2025Updated 4 months ago
• Flangvik / RegPwnBOF

  View on GitHub
  Bof of RegPwn by MDSec
  ☆118Mar 15, 2026Updated last month
• kapla0011 / KaplaStrike

  View on GitHub
  A Cobalt Strike RL built with Crystal Palace — module overloading, NtContinue entry transfer, call stack spoofing, sleep masking, and sta…
  ☆199Mar 15, 2026Updated last month
• NtDallas / OdinLdr

  View on GitHub
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆191Jan 17, 2026Updated 3 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• dis0rder0x00 / stillepost

  View on GitHub
  Using Chromium-based browsers as a proxy for C2 traffic.
  ☆152Dec 6, 2025Updated 4 months ago
• TwoSevenOneT / WSASS

  View on GitHub
  This is the tool to dump the LSASS process on modern Windows 11
  ☆574Nov 1, 2025Updated 5 months ago
• CICADA8-Research / RpcMotion

  View on GitHub
  Execute commands, in/exfiltrate files using your custom RPC Server
  ☆68Jan 13, 2026Updated 3 months ago
• bitStream93 / Shellcode-Test-Harness

  View on GitHub
  A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos…
  ☆44Jan 15, 2026Updated 3 months ago
• kozmer / dcsync-bof

  View on GitHub
  dcsync bof
  ☆52Feb 13, 2026Updated 2 months ago
• CodeXTF2 / Cobaltstrike_BOFLoader

  View on GitHub
  open source port/reimplementation of the Cobalt Strike BOF Loader as is
  ☆72Mar 8, 2026Updated last month
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆154Apr 18, 2025Updated last year
• rasta-mouse / SpawnWith

  View on GitHub
  ☆111Feb 17, 2025Updated last year
• wolfcod / lsassdump

  View on GitHub
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆87Oct 18, 2024Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• jakobfriedl / BenevolentLoader

  View on GitHub
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆114Jun 16, 2024Updated last year
• epotseluevskaya / ASPX_WebShell_COFFLoader

  View on GitHub
  ASPX Web Shell with COFF Loader
  ☆129Mar 10, 2026Updated last month
• 1r0BIT / TaskHound

  View on GitHub
  Tool to enumerate privileged Scheduled Tasks on Remote Systems
  ☆294Mar 29, 2026Updated 3 weeks ago
• Teach2Breach / moonwalk

  View on GitHub
  find dll base addresses without PEB WALK
  ☆162Jul 13, 2025Updated 9 months ago
• ameenalkerdy / ETWShellcodeLoader

  View on GitHub
  Shellcode Loader Utilizing ETW Events
  ☆66Feb 26, 2025Updated last year
• zyn3rgy / smbtakeover

  View on GitHub
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆349Nov 19, 2024Updated last year
• S12cybersecurity / FrankensteinAPCInjection

  View on GitHub
  Novel Windows process injection: assembles existing open handles (process & thread), natural RWX regions, and special user APC (NtQueueAp…
  ☆69Feb 17, 2026Updated 2 months ago
• incursi0n / ClipboardStealBOF

  View on GitHub
  An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…
  ☆108Apr 16, 2026Updated last week
• Shrfnt77 / AmsiBypass

  View on GitHub
  Bypassing Amsi using LdrLoadDll
  ☆48Jan 8, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• CompassSecurity / pipeleek

  View on GitHub
  Pipeleek scans CI/CD logs and artifacts to detect leaked secrets and pivot from them
  ☆19Updated this week
• HackingLZ / defender_overview

  View on GitHub
  Overview of MS Defender
  ☆135Feb 20, 2026Updated 2 months ago
• mochabyte0x / TrampoLatte

  View on GitHub
  A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow
  ☆18Jun 26, 2025Updated 10 months ago
• xforcered / VectoredExceptionHandling

  View on GitHub
  ☆36Aug 21, 2024Updated last year
• MythicAgents / Kharon-Mtc

  View on GitHub
  C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…
  ☆204Dec 30, 2025Updated 3 months ago
• bitdefender / hypervinject-poc

  View on GitHub
  ☆59Feb 19, 2026Updated 2 months ago
• unam4 / yso-mysqlpipe

  View on GitHub
  y4er的ysoserial修改版，加入mysql不出网pipe文件生成
  ☆26Mar 8, 2026Updated last month