Yeeb1 / MagicBOFsLinks
A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.
☆12Updated 2 months ago
Alternatives and similar repositories for MagicBOFs
Users that are interested in MagicBOFs are comparing it to the libraries listed below
Sorting:
- ForsHops☆149Updated 6 months ago
- Local SYSTEM auth trigger for relaying - X☆138Updated 2 months ago
- Random BOFs for LDAP tradecraft☆65Updated 3 weeks ago
- AzureAD beacon object files☆127Updated 9 months ago
- 🧠 The ultimate, community-curated resource for Beacon Object Files (BOFs) — tutorials, how-tos, deep dives, and reference materials.☆85Updated 3 weeks ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆102Updated 4 months ago
- Internal Monologue BOF☆70Updated 9 months ago
- Lateral Movement Bof with MSI ODBC Driver Install☆67Updated this week
- ☆122Updated 8 months ago
- A python script that automates a C2 Profile build☆47Updated 3 weeks ago
- ☆120Updated 8 months ago
- Lateral movement with DCOM DLL hijacking☆140Updated 2 months ago
- ForsHops☆58Updated 6 months ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆51Updated 6 months ago
- A collection of position independent coding resources☆94Updated 3 weeks ago
- Terms of Use Conditional Access M365 Evilginx Phishlet☆41Updated 3 months ago
- ☆124Updated last year
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆36Updated last month
- Generate Secure, Polymorphic, Evasive Payloads☆22Updated last month
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆131Updated 3 months ago
- Impersonate Tokens using only NTAPI functions☆80Updated 5 months ago
- ☆50Updated 3 months ago
- COM-based DLL Surrogate Injection☆109Updated 3 weeks ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆68Updated last year
- Threadless shellcode injection tool☆67Updated last year
- Local SYSTEM auth trigger for relaying☆160Updated 2 months ago
- ☆98Updated last year
- BOF with Synthetic Stackframe☆168Updated 7 months ago
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆148Updated 3 weeks ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆74Updated last year