Take a screenshot without injection for Cobalt Strike
☆203Jun 7, 2023Updated 2 years ago
Alternatives and similar repositories for ScreenshotBOFPlus
Users that are interested in ScreenshotBOFPlus are comparing it to the libraries listed below
Sorting:
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Jul 23, 2023Updated 2 years ago
- ☆41Jul 10, 2023Updated 2 years ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆136Nov 30, 2022Updated 3 years ago
- An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…☆490Dec 7, 2025Updated 2 months ago
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆205Aug 25, 2023Updated 2 years ago
- AddDefenderExclusions Beacon Object File☆41Jun 25, 2023Updated 2 years ago
- Cobalt Strike 二开项目☆185Feb 11, 2023Updated 3 years ago
- Beacon Object File implementation of pwn1sher's KillDefender☆67Jun 28, 2022Updated 3 years ago
- ☆162Mar 27, 2023Updated 2 years ago
- A BOF to determine Windows Defender exclusions.☆253Jun 25, 2023Updated 2 years ago
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Apr 20, 2023Updated 2 years ago
- Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode☆201May 28, 2024Updated last year
- BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…☆394Jan 9, 2024Updated 2 years ago
- New generation of wmiexec.py☆1,254Jan 5, 2026Updated 2 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆97Mar 20, 2023Updated 2 years ago
- ☆125Jun 28, 2023Updated 2 years ago
- Fileless atexec, no more need for port 445☆404Mar 28, 2024Updated last year
- A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk☆473Jul 6, 2024Updated last year
- Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.☆215Oct 9, 2022Updated 3 years ago
- Library of BOFs to interact with SQL servers☆223Dec 3, 2025Updated 3 months ago
- 基于Tinynuke修复得到的HVNC☆189Sep 4, 2021Updated 4 years ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆675Aug 15, 2025Updated 6 months ago
- Pillager是一个适用于后渗透期间的信息收集工具☆1,268Sep 7, 2024Updated last year
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆451Mar 11, 2024Updated last year
- dump lsass进程工具☆561Jul 20, 2023Updated 2 years ago
- RPC远程主机信息匿名扫描工具☆317Sep 30, 2022Updated 3 years ago
- HVNC for Cobalt Strike☆1,301Dec 7, 2023Updated 2 years ago
- Zerologon exploit with restore DC password automatically☆145Mar 15, 2024Updated last year
- 提取域控日志,支持远程提取☆171Mar 17, 2025Updated 11 months ago
- C or BOF file to extract WebKit master key to decrypt user cookie☆207Apr 29, 2024Updated last year
- 添加计划任务方法集合☆309Aug 6, 2023Updated 2 years ago
- 使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。☆556Jan 18, 2022Updated 4 years ago
- Some Service DCOM Object and SeImpersonatePrivilege abuse.☆372Dec 9, 2022Updated 3 years ago
- Execute unmanaged Windows executables in CobaltStrike Beacons☆714Mar 4, 2023Updated 3 years ago
- CobaltStrike beacon in rust☆208Aug 10, 2024Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆55Jul 1, 2023Updated 2 years ago
- 常用功能的DLL插件☆86Sep 24, 2025Updated 5 months ago
- Callback Function Loader Implemented in Go☆140Mar 26, 2024Updated last year
- A Beacon Object File (BOF) template for Visual Studio☆269Nov 24, 2025Updated 3 months ago