Alternatives and similar repositories for bof-registry

Users that are interested in bof-registry are comparing it to the libraries listed below

• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆86Updated 2 years ago
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆56Updated 2 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆85Updated 3 years ago
• Octoberfest7 / JumpSession_BOF
  Beacon Object File allowing creation of Beacons in different sessions.
  ☆81Updated 3 years ago
• EspressoCake / BOF_NativeAPI_Definitions-VSCode
  A VSCode plugin to assist with BOF development.
  ☆37Updated 11 months ago
• jsecu / ElevatedEvents
  ☆30Updated 2 years ago
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆104Updated 3 years ago
• CUHKJason / BOF-klist
  A simple BOF implementation of klist using Windows API
  ☆32Updated 3 years ago
• EspressoCake / DLL-Exports-Extraction-BOF
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆82Updated 3 years ago
• EspressoCake / HandleKatz_BOF
  A BOF port of the research of @thefLinkk and @codewhitesec
  ☆98Updated 3 years ago
• soufianetahiri / CitrixSecureAccessAuthCookieDump
  Dump Citrix Secure Access auth cookie from the process memory
  ☆76Updated 3 years ago
• Wh04m1001 / PICDumper
  ☆25Updated 3 years ago
• williamknows / SharpHound3
  C# Data Collector for the BloodHound Project, Version 3
  ☆37Updated 3 years ago
• guervild / InlineZipper
  ☆23Updated 3 years ago
• Hagrid29 / BOF-CredUI
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆20Updated 2 years ago
• eladshamir / BadWindowsService
  An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities
  ☆61Updated 2 years ago
• Allevon412 / BreadManModuleStomping
  ☆43Updated last year
• EspressoCake / BeaconDownloadSync
  ☆94Updated 3 years ago
• EspressoCake / DynamicTabRename
  CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.
  ☆25Updated 3 years ago
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆29Updated 3 years ago
• nick-frischkorn / SuspendEventLogBOF
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆27Updated 3 years ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• bugch3ck / SharpLdapWhoami
  WhoAmI by asking the LDAP service on a domain controller.
  ☆63Updated 3 years ago
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆62Updated last year
• waawaa / AMSI_Rubeus_bypass
  ☆70Updated 3 years ago
• tothi / SharpStay
  .NET project for installing Persistence
  ☆63Updated 3 years ago
• S4ntiagoP / freeBokuLoader
  A simple BOF that frees UDRLs
  ☆120Updated 3 years ago
• ceramicskate0 / SharpExchange
  C# Tool to interact with MS Exchange based on MS docs
  ☆101Updated 2 years ago
• VoldeSec / BOF-NPPSPY
  Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…
  ☆18Updated 2 years ago
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆38Updated 3 years ago