WKL-Sec/dcomhijack

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/WKL-Sec/dcomhijack)

WKL-Sec / dcomhijack

Lateral Movement Using DCOM and DLL Hijacking

☆325

Alternatives and similar repositories for dcomhijack

Users that are interested in dcomhijack are comparing it to the libraries listed below

Sorting:

REDMED-X / OperatorsKit
View on GitHub
Collection of Beacon Object Files (BOF) for Cobalt Strike
☆675Aug 15, 2025Updated 6 months ago
wavvs / nanorobeus
View on GitHub
COFF file (BOF) for managing Kerberos tickets.
☆320Jul 2, 2023Updated 2 years ago
Octoberfest7 / DropSpawn_BOF
View on GitHub
CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
☆285Jun 8, 2023Updated 2 years ago
fortra / No-Consolation
View on GitHub
A BOF that runs unmanaged PEs inline
☆681Oct 23, 2024Updated last year
Dec0ne / DllNotificationInjection
View on GitHub
A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…
☆465Aug 23, 2023Updated 2 years ago
MzHmO / TGSThief
View on GitHub
My implementation of the GIUDA project in C++
☆189Jul 25, 2023Updated 2 years ago
CognisysGroup / HadesLdr
View on GitHub
Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2
☆293Jul 15, 2023Updated 2 years ago
0xEr3bus / PoolPartyBof
View on GitHub
A beacon object file implementation of PoolParty Process Injection Technique.
☆434Dec 21, 2023Updated 2 years ago
RalfHacker / Kerbeus-BOF
View on GitHub
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
☆546Nov 23, 2025Updated 3 months ago
reveng007 / DarkWidow
View on GitHub
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
☆776Jan 26, 2026Updated last month
kleiton0x00 / Proxy-DLL-Loads
View on GitHub
A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
☆409Jan 11, 2026Updated last month
mlcsec / ASRenum-BOF
View on GitHub
Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
☆160Mar 1, 2024Updated 2 years ago
wh0amitz / KRBUACBypass
View on GitHub
UAC Bypass By Abusing Kerberos Tickets
☆508Aug 10, 2023Updated 2 years ago
slemire / WSPCoerce
View on GitHub
PoC to coerce authentication from Windows hosts using MS-WSP
☆302Sep 7, 2023Updated 2 years ago
Cracked5pider / CoffeeLdr
View on GitHub
Beacon Object File Loader
☆293Dec 3, 2023Updated 2 years ago
rasta-mouse / SpawnWith
View on GitHub
☆109Feb 17, 2025Updated last year
outflanknl / C2-Tool-Collection
View on GitHub
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
☆1,370Oct 27, 2023Updated 2 years ago
kyleavery / AceLdr
View on GitHub
Cobalt Strike UDRL for memory scanner evasion.
☆1,006Jun 4, 2024Updated last year
icyguider / UAC-BOF-Bonanza
View on GitHub
Collection of UAC Bypass Techniques Weaponized as BOFs
☆607Feb 21, 2024Updated 2 years ago
CCob / ThreadlessInject
View on GitHub
Threadless Process Injection using remote function hooking.
☆810Sep 4, 2024Updated last year
zblurx / dploot
View on GitHub
DPAPI looting remotely and locally in Python
☆541Oct 7, 2025Updated 4 months ago
JanielDary / ImmoralFiber
View on GitHub
Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
☆283Sep 18, 2024Updated last year
xpn / RandomTSScripts
View on GitHub
Collection of random RedTeam scripts.
☆211Mar 8, 2024Updated last year
Dec0ne / DavRelayUp
View on GitHub
DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
☆568Jun 5, 2023Updated 2 years ago
Mr-Un1k0d3r / Cookie-and-Handle-Stealer
View on GitHub
C or BOF file to extract WebKit master key to decrypt user cookie
☆207Apr 29, 2024Updated last year
YOLOP0wn / POSTDump
View on GitHub
☆341Nov 10, 2025Updated 3 months ago
securifybv / BOFRyptor
View on GitHub
☆123Oct 9, 2023Updated 2 years ago
Ridter / atexec-pro
View on GitHub
Fileless atexec, no more need for port 445
☆404Mar 28, 2024Updated last year
SaadAhla / TakeMyRDP
View on GitHub
A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…
☆398Aug 2, 2023Updated 2 years ago
synacktiv / DLHell
View on GitHub
Local & remote Windows DLL Proxying
☆169Jun 17, 2024Updated last year
Accenture / Spartacus
View on GitHub
Spartacus DLL/COM Hijacking Toolkit
☆1,083Feb 1, 2024Updated 2 years ago
ricardojoserf / NativeDump
View on GitHub
Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)
☆701May 7, 2025Updated 9 months ago
deepinstinct / ContainYourself
View on GitHub
A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
☆318Aug 31, 2023Updated 2 years ago
WKL-Sec / HiddenDesktop
View on GitHub
HVNC for Cobalt Strike
☆1,298Dec 7, 2023Updated 2 years ago
OtterHacker / SetProcessInjection
View on GitHub
☆152Oct 2, 2023Updated 2 years ago
cube0x0 / BofRoast
View on GitHub
Beacon Object Files for roasting Active Directory
☆235Feb 21, 2022Updated 4 years ago
REDMED-X / InjectKit
View on GitHub
Modified versions of the Cobalt Strike Process Injection Kit
☆106Jan 24, 2024Updated 2 years ago
Octoberfest7 / Inline-Execute-PE
View on GitHub
Execute unmanaged Windows executables in CobaltStrike Beacons
☆714Mar 4, 2023Updated 3 years ago
garrettfoster13 / sccmhunter
View on GitHub
SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
☆892Feb 18, 2026Updated last week