A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
☆57Apr 14, 2025Updated 10 months ago
Alternatives and similar repositories for FriendlyFireBOF
Users that are interested in FriendlyFireBOF are comparing it to the libraries listed below
Sorting:
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 7 months ago
- Mythic C2 Agent written in x64 PIC C☆85Jan 29, 2025Updated last year
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation☆18Dec 18, 2024Updated last year
- ☆33Jan 23, 2025Updated last year
- An example reference design for a proposed BOF PE☆200Jan 23, 2026Updated last month
- Local SYSTEM auth trigger for relaying - X☆155Jul 23, 2025Updated 7 months ago
- Cobalt Strike UDRL for memory scanner evasion.☆52Dec 4, 2023Updated 2 years ago
- rust port of pspy with support for process monitoring over dbus☆36Jan 4, 2026Updated last month
- Your Skyfall Infrastructure Pack☆89Jan 25, 2026Updated last month
- A collection of position independent coding resources☆107Nov 15, 2025Updated 3 months ago
- A Mythic Agent written in PIC C.☆207Feb 4, 2025Updated last year
- BOF with Synthetic Stackframe☆225Oct 30, 2025Updated 4 months ago
- BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.☆24Jul 5, 2023Updated 2 years ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆92Jan 8, 2025Updated last year
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆128Oct 4, 2024Updated last year
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆137Apr 18, 2025Updated 10 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆124Jan 17, 2026Updated last month
- 🧠 The ultimate resource for finding Beacon Object Files (BOFs).☆106Updated this week
- Call Stack Spoofing for Rust☆210Jan 28, 2026Updated last month
- A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass☆167Sep 22, 2025Updated 5 months ago
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆38Aug 5, 2025Updated 6 months ago
- Linker for Beacon Object Files☆159Feb 22, 2026Updated last week
- A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++☆37Jan 10, 2024Updated 2 years ago
- The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23☆23Jun 19, 2025Updated 8 months ago
- Rust template/library for implementing your own COFF loader☆72Jan 27, 2025Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆186Jan 17, 2026Updated last month
- ☆138Nov 17, 2025Updated 3 months ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆38Mar 6, 2025Updated 11 months ago
- ☆50Jun 4, 2025Updated 8 months ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆346Nov 19, 2024Updated last year
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆158Nov 7, 2023Updated 2 years ago
- ☆124May 12, 2021Updated 4 years ago
- Sleep obfuscation☆268Dec 13, 2024Updated last year
- ☆121Nov 21, 2024Updated last year
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆137Dec 7, 2025Updated 2 months ago
- Bloodhound python Ingestor using ADWS☆31Feb 4, 2026Updated 3 weeks ago
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆18Mar 19, 2025Updated 11 months ago