chbGSmCm / bof-deez-nutsLinks
Classic Bofa adapted to CobaltStrike.
☆11Updated 2 years ago
Alternatives and similar repositories for bof-deez-nuts
Users that are interested in bof-deez-nuts are comparing it to the libraries listed below
Sorting:
- Sleep Obfuscation☆45Updated 2 years ago
- DLL Exports Extraction BOF with optional NTFS transactions.☆82Updated 3 years ago
- A work in progress BOF/COFF loader in Rust☆51Updated 2 years ago
- ☆43Updated last year
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆29Updated 3 years ago
- Beacon Object Files (not Buffer Overflows)☆56Updated 2 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆54Updated last year
- Beacon Object File allowing creation of Beacons in different sessions.☆81Updated 3 years ago
- Donut generator in rust.☆28Updated 3 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- ☆56Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- Unchain AMSI by patching the provider’s unmonitored memory space☆91Updated 2 years ago
- Syscall BOF to arbitrarily add/detract process token privilege rights.☆58Updated last year
- Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.☆127Updated 3 years ago
- ☆57Updated last year
- ☆30Updated 2 years ago
- Halos Gate-based NTAPI Unhooker☆51Updated 3 years ago
- ☆82Updated 3 years ago
- My implementation of Halo's Gate technique in C#☆54Updated 3 years ago
- ☆100Updated last year
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆130Updated 2 years ago
- Simple and sane cryptographic wrapper library.☆33Updated 2 years ago
- ShellcodeFluctuation PoC ported to Nim☆78Updated 2 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 4 years ago
- A method to execute shellcode using RegisterWaitForInputIdle API.☆55Updated 2 years ago
- D/Invoke implementation in Nim☆103Updated 3 years ago
- Get your data from the resource section manually, with no need for windows apis☆64Updated 10 months ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆84Updated 2 years ago
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆26Updated last year