chryzsh / awesome-bofLinks
π§ The ultimate, community-curated resource for Beacon Object Files (BOFs) β tutorials, how-tos, deep dives, and reference materials.
β83Updated 2 weeks ago
Alternatives and similar repositories for awesome-bof
Users that are interested in awesome-bof are comparing it to the libraries listed below
Sorting:
- ForsHopsβ149Updated 5 months ago
- AzureAD beacon object filesβ126Updated 9 months ago
- β120Updated 6 months ago
- β122Updated 8 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.β102Updated 4 months ago
- β119Updated 7 months ago
- Evasive Payload Delivery Server & C2 Redirectorβ101Updated last month
- Local SYSTEM auth trigger for relayingβ158Updated last month
- β134Updated 2 weeks ago
- .NET assembly loader with patchless AMSI and ETW bypass in Rustβ53Updated 11 months ago
- Lateral movement with DCOM DLL hijackingβ140Updated 2 months ago
- Code execution/injection technique using DLL PEB module structure manipulationβ172Updated 3 months ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijackingβ129Updated 2 months ago
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencieβ¦β145Updated 2 weeks ago
- A Mythic agent for Windows written in Cβ136Updated last week
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to executionβ192Updated 9 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpointsβ114Updated 2 months ago
- β124Updated last year
- A hoontr must hoontβ93Updated last month
- Early Bird Cryo Injections β APC-based DLL & Shellcode Injection via Pre-Frozen Job Objectsβ115Updated 5 months ago
- Weaponizing DCOM for NTLM Authentication Coercionsβ161Updated 2 months ago
- Bypass user-land hooks by syscall tampering via the Trap Flagβ115Updated 3 weeks ago
- Local SYSTEM auth trigger for relaying - Xβ138Updated last month
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCSβ149Updated 7 months ago
- Random BOFs for LDAP tradecraftβ58Updated last week
- A python script that automates a C2 Profile buildβ44Updated 2 weeks ago
- BOF with Synthetic Stackframeβ167Updated 6 months ago
- Adversary Emulation Frameworkβ123Updated 2 months ago
- β157Updated 9 months ago
- A collection of position independent coding resourcesβ94Updated last week