dtmsecurity/bof_helper

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/dtmsecurity/bof_helper)

dtmsecurity / bof_helper

Beacon Object File (BOF) Creation Helper

☆236

Alternatives and similar repositories for bof_helper

Users that are interested in bof_helper are comparing it to the libraries listed below

Sorting:

ajpc500 / BOFs
View on GitHub
Collection of Beacon Object Files
☆633Nov 1, 2022Updated 3 years ago
outflanknl / FindObjects-BOF
View on GitHub
A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
☆275May 3, 2023Updated 2 years ago
securifybv / Visual-Studio-BOF-template
View on GitHub
A Visual Studio template used to create Cobalt Strike BOFs
☆323Nov 17, 2021Updated 4 years ago
outflanknl / WdToggle
View on GitHub
A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
☆220May 3, 2023Updated 2 years ago
EncodeGroup / BOF-RegSave
View on GitHub
Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
☆216Oct 8, 2020Updated 5 years ago
anthemtotheego / InlineExecute-Assembly
View on GitHub
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
☆740Jul 22, 2023Updated 2 years ago
CCob / BOF.NET
View on GitHub
A .NET Runtime for Cobalt Strike's Beacon Object Files
☆772Sep 4, 2024Updated last year
rvrsh3ll / BOF_Collection
View on GitHub
Various Cobalt Strike BOFs
☆743Oct 16, 2022Updated 3 years ago
Yaxser / CobaltStrike-BOF
View on GitHub
Collection of beacon BOF written to learn windows and cobaltstrike
☆362Feb 24, 2023Updated 3 years ago
crypt0p3g / bof-collection
View on GitHub
Collection of Beacon Object Files (BOF) for Cobalt Strike
☆186Dec 5, 2022Updated 3 years ago
outflanknl / InlineWhispers
View on GitHub
Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)
☆321Nov 9, 2021Updated 4 years ago
rxwx / spoolsystem
View on GitHub
Print Spooler Named Pipe Impersonation for Cobalt Strike
☆271Jun 13, 2020Updated 5 years ago
rsmudge / unhook-bof
View on GitHub
Remove API hooks from a Beacon process.
☆282Sep 18, 2021Updated 4 years ago
m57 / cobaltstrike_bofs
View on GitHub
My CobaltStrike BOFS
☆167Jul 23, 2022Updated 3 years ago
rookuu / BOFs
View on GitHub
Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.
☆185Feb 11, 2021Updated 5 years ago
EncodeGroup / AggressiveProxy
View on GitHub
Project to enumerate proxy configurations and generate shellcode from CobaltStrike
☆140Nov 4, 2020Updated 5 years ago
guervild / BOFs
View on GitHub
Cobalt Strike Beacon Object Files
☆167May 2, 2022Updated 3 years ago
tomcarver16 / BOF-DLL-Inject
View on GitHub
Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
☆152Sep 3, 2020Updated 5 years ago
CCob / goreflect
View on GitHub
Reflective DLL loading of your favorite Golang program
☆173Jan 27, 2020Updated 6 years ago
trustedsec / CS-Situational-Awareness-BOF
View on GitHub
Situational Awareness commands implemented using Beacon Object Files
☆1,722Feb 23, 2026Updated last week
G0ldenGunSec / SharpSecDump
View on GitHub
.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
☆607Feb 16, 2023Updated 3 years ago
nccgroup / nccfsas
View on GitHub
Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.
☆608Aug 5, 2022Updated 3 years ago
boku7 / spawn
View on GitHub
Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
☆469Mar 8, 2023Updated 2 years ago
EspressoCake / Self_Deletion_BOF
View on GitHub
BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs
☆187Oct 3, 2021Updated 4 years ago
EspressoCake / PPLDump_BOF
View on GitHub
A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
☆143Sep 24, 2021Updated 4 years ago
RiccardoAncarani / BOFs
View on GitHub
Collection of Beacon Object Files (BOFs) for shells and lols
☆121Sep 14, 2021Updated 4 years ago
Cobalt-Strike / beacon_health_check
View on GitHub
This aggressor script uses a beacon's note field to indicate the health status of a beacon.
☆141Sep 29, 2021Updated 4 years ago
anthemtotheego / CredBandit
View on GitHub
Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
☆219Jul 14, 2021Updated 4 years ago
pkb1s / SharpRelay
View on GitHub
☆181Feb 3, 2021Updated 5 years ago
trustedsec / CS-Remote-OPs-BOF
View on GitHub
Remote operations commands implemented using Beacon Object Files
☆1,120Feb 23, 2026Updated last week
trustedsec / COFFLoader
View on GitHub
☆615Jul 21, 2025Updated 7 months ago
RCStep / CSSG
View on GitHub
Cobalt Strike Shellcode Generator
☆670Jan 8, 2025Updated last year
kyleavery / AceLdr
View on GitHub
Cobalt Strike UDRL for memory scanner evasion.
☆1,006Jun 4, 2024Updated last year
EncodeGroup / UAC-SilentClean
View on GitHub
New UAC bypass for Silent Cleanup for CobaltStrike
☆191Jul 14, 2021Updated 4 years ago
Cracked5pider / KaynStrike
View on GitHub
UDRL for CS
☆444Dec 3, 2023Updated 2 years ago
FalconForceTeam / SysWhispers2BOF
View on GitHub
Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs
☆125May 24, 2022Updated 3 years ago
kyleavery / inject-assembly
View on GitHub
Inject .NET assemblies into an existing process
☆508Jan 19, 2022Updated 4 years ago
EspressoCake / BeaconDownloadSync
View on GitHub
☆94May 14, 2022Updated 3 years ago
b4rtik / SharpMiniDump
View on GitHub
Create a minidump of the LSASS process from memory
☆261Nov 2, 2022Updated 3 years ago