☆84Apr 8, 2026Updated 2 months ago
Alternatives and similar repositories for KslKatzBof
Users that are interested in KslKatzBof are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Phantom is project created to perform loading and executing unmanaged code in memory within an IIS environment running in full‑trust mode…☆103Apr 27, 2026Updated last month
- A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.☆160Apr 15, 2026Updated last month
- ☆48Feb 12, 2026Updated 3 months ago
- Generate malware with AI☆222Apr 14, 2026Updated last month
- Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.☆23Nov 11, 2025Updated 6 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- BOF for Havoc that copies locked Windows files (SAM, SYSTEM, NTDS.dit) via raw MFT parsing — no VSS, no Registry APIs, no PowerShell☆131Apr 6, 2026Updated 2 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆70Dec 25, 2025Updated 5 months ago
- ☆111Aug 21, 2024Updated last year
- sigreturn-oriented(SROP) based sleep obfuscation poc for Linux☆69Dec 15, 2025Updated 5 months ago
- A portable C# utility for enumerating local and remote windows sessions☆57Jan 1, 2026Updated 5 months ago
- A Cobalt Strike RL built with Crystal Palac; module overloading, NtContinue entry transfer, call stack spoofing, sleep masking, and stati…☆210Mar 15, 2026Updated 2 months ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆189Jan 17, 2026Updated 4 months ago
- Surgical UNWIND_INFO preservation for sleep masking without call stack spoofing.☆53Mar 30, 2026Updated 2 months ago
- Using Chromium-based browsers as a proxy for C2 traffic.☆152Dec 6, 2025Updated 6 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques☆129Dec 28, 2025Updated 5 months ago
- This is the tool to dump the LSASS process on modern Windows 11☆586May 23, 2026Updated 2 weeks ago
- Execute commands, in/exfiltrate files using your custom RPC Server☆69Jan 13, 2026Updated 4 months ago
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos…☆45Jan 15, 2026Updated 4 months ago
- dcsync bof☆52Feb 13, 2026Updated 3 months ago
- open source port/reimplementation of the Cobalt Strike BOF Loader as is☆72Mar 8, 2026Updated 2 months ago
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆154Apr 18, 2025Updated last year
- ☆111Feb 17, 2025Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆87Oct 18, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Bof of RegPwn by MDSec☆123Mar 15, 2026Updated 2 months ago
- ASPX Web Shell with COFF Loader☆130Mar 10, 2026Updated 2 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆301Mar 29, 2026Updated 2 months ago
- find dll base addresses without PEB WALK☆168Jul 13, 2025Updated 10 months ago
- Shellcode Loader Utilizing ETW Events☆66Feb 26, 2025Updated last year
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆132Jun 16, 2024Updated last year
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆357Nov 19, 2024Updated last year
- An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…☆112Apr 16, 2026Updated last month
- Bypassing Amsi using LdrLoadDll☆47Jan 8, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Novel Windows process injection: assembles existing open handles (process & thread), natural RWX regions, and special user APC (NtQueueAp…☆75Feb 17, 2026Updated 3 months ago
- Pipeleek scans CI/CD logs and artifacts to detect leaked secrets and pivot from them☆19Updated this week
- ☆36Aug 21, 2024Updated last year
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆19Jun 26, 2025Updated 11 months ago
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆208Dec 30, 2025Updated 5 months ago
- ☆59Feb 19, 2026Updated 3 months ago
- y4er的ysoserial修改版,加入mysql不出网pipe文件生成☆26Mar 8, 2026Updated 3 months ago