Und3rf10w / CobaltStrikeBOFs
Beacon Object Files used for Cobalt Strike
☆17Updated last year
Alternatives and similar repositories for CobaltStrikeBOFs:
Users that are interested in CobaltStrikeBOFs are comparing it to the libraries listed below
- A simple rpc2socks alternative in pure Go.☆28Updated 8 months ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated last year
- ☆18Updated 5 months ago
- OSED Practice binary☆24Updated last year
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆20Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated last year
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- A lexer and parser for Sleep☆16Updated 2 months ago
- An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.☆12Updated last year
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Python3 tool to perform password spraying using RDP☆16Updated last year
- string encryption in Nim☆17Updated 9 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 10 months ago
- ManageEngine ADManager Command Injection☆11Updated last year
- ☆16Updated 11 months ago
- Remotely dump NT hashes through Windows Crash dumps☆26Updated 4 months ago
- Find kernel32 base and API addresses. Simple C++ implementation☆24Updated 2 years ago
- The Totally Legit Authentication Dialog☆12Updated last year
- Cobalt Strike notifications via NTFY.☆13Updated 5 months ago
- Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.☆14Updated last year
- A simple to use single-include Windows API resolver☆20Updated 8 months ago
- ☆21Updated last year
- A compilation of Aggressor/Sleep scripts for operational purposes that I've made.☆11Updated 3 years ago
- Example of using Sleep to create better named pipes.☆41Updated last year
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆30Updated last year
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆31Updated last year
- All my POC related to malware development☆11Updated 10 months ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆30Updated last year