Enable EFS service as low priv user (PE & BOF)
☆21Jul 6, 2025Updated 10 months ago
Alternatives and similar repositories for EnableEFS
Users that are interested in EnableEFS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- User-Defined C2 BOF Template☆32Nov 24, 2025Updated 5 months ago
- A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.☆21Jul 15, 2025Updated 10 months ago
- Load and execute a common object file format (COFF) in the current process☆31Mar 9, 2024Updated 2 years ago
- MDE/MDI Defender setup for Ludus☆58Mar 14, 2026Updated 2 months ago
- arm64 linux position-independent shellcode framework☆31Dec 12, 2025Updated 5 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- UDC2 implementation that provides an ICMP C2 channel☆124Nov 24, 2025Updated 5 months ago
- External C2 is a specification to allow third-party programs to act as a communication layer for Cobalt Strike’s Beacon payload.☆19Jul 17, 2025Updated 10 months ago
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- BYOVD: Use 360 WFP driver to block EDR/XDR network connection.☆122Feb 10, 2026Updated 3 months ago
- Entra ID Password Protection Banned Password Lists☆19Apr 16, 2024Updated 2 years ago
- ☆26Mar 24, 2026Updated last month
- PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…☆54Nov 9, 2025Updated 6 months ago
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 6 months ago
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆20Jul 8, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- System Call Integrity Layer - experimental security research☆27Apr 14, 2026Updated last month
- Safe Harbor is a BOF that streamlines process reconnaissance for red team operations by identifying trusted, low-noise targets to maintai…☆81Oct 27, 2025Updated 6 months ago
- ☆55Jun 28, 2025Updated 10 months ago
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- A BOF to enumerate system process, their protection levels, and more.☆126Nov 27, 2024Updated last year
- ☆54May 31, 2025Updated 11 months ago
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- Beacon Object Files (BOFs) for Cobalt Strike and Havoc C2. Implementations of Active Directory attacks and post-exploitation techniques.☆114Jan 26, 2026Updated 3 months ago
- Help red teams find opsec processes during engagements☆44Dec 7, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A Windows C++ OLE/COM Object explorer written in WTL.☆17Feb 28, 2025Updated last year
- A simple BOF (Beacon Object File) to search files in the system☆17Dec 2, 2023Updated 2 years ago
- ☆14Dec 26, 2024Updated last year
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆154Apr 18, 2025Updated last year
- AV/EDR companies netblocks☆18Nov 9, 2021Updated 4 years ago
- A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.☆76Aug 24, 2025Updated 8 months ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆300May 11, 2026Updated last week
- ☆51Jun 6, 2025Updated 11 months ago
- Automatically create an operation log of your shell! Supports Linux (Bash/Zsh) and Windows (PowerShell/CMD).☆36Jan 11, 2026Updated 4 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs☆24Jul 11, 2025Updated 10 months ago
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆41Aug 5, 2025Updated 9 months ago
- 在cobaltstrike中使用的bof工具集,收集整理验证好用的bof。☆17Sep 30, 2021Updated 4 years ago
- ☆50Jun 4, 2025Updated 11 months ago
- Beacon Object File for Cobalt Strike that executes .NET assemblies in beacon with evasion techniques.☆193Dec 23, 2025Updated 4 months ago
- Dll hijack -- just one macro☆13Jul 3, 2023Updated 2 years ago
- Arsenal of modules to beacon postex☆103Mar 13, 2026Updated 2 months ago