improsec/CaddyStager external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

improsec/CaddyStager

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/improsec/CaddyStager)

Close

improsec / CaddyStagerView on GitHubMore

• External links
• Readme badge

☆39May 21, 2022Updated 4 years ago

Alternatives and similar repositories for CaddyStager

Users that are interested in CaddyStager are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• audibleblink / davil

  View on GitHub
  leaking net-ntlm with webdav
  ☆25Feb 23, 2021Updated 5 years ago
• EspressoCake / Needle_Sift_BOF

  View on GitHub
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Sep 27, 2021Updated 4 years ago
• HackingThings / SuperSneakyExec

  View on GitHub
  Loading and executing shellcode in C# without PInvoke.
  ☆22Jan 10, 2022Updated 4 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 3 years ago
• whokilleddb / cs-bof-template

  View on GitHub
  Dockerized template to build CS BOFs using clang-cl
  ☆26Jan 29, 2026Updated 4 months ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• kyleavery / scarecrow_wrapper

  View on GitHub
  ☆40Jul 29, 2021Updated 4 years ago
• nopbrick / SeeProxy

  View on GitHub
  Golang reverse proxy with CobaltStrike malleable profile validation.
  ☆110Jan 19, 2023Updated 3 years ago
• kyleavery / inject-assembly

  View on GitHub
  Inject .NET assemblies into an existing process
  ☆508Jan 19, 2022Updated 4 years ago
• netero1010 / RDPHijack-BOF

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
  ☆316Jul 8, 2022Updated 3 years ago
• pwn1sher / CS-BOFs

  View on GitHub
  Collection of CobaltStrike beacon object files
  ☆105Feb 14, 2022Updated 4 years ago
• apokryptein / secinject

  View on GitHub
  Section Mapping Process Injection (secinject): Cobalt Strike BOF
  ☆104Jan 7, 2022Updated 4 years ago
• Crypt0s / DelegationBOF

  View on GitHub
  ☆143May 4, 2022Updated 4 years ago
• tothi / SharpStay

  View on GitHub
  .NET project for installing Persistence
  ☆63Feb 14, 2022Updated 4 years ago
• NVISOsecurity / pyCobaltHound

  View on GitHub
  pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…
  ☆135May 25, 2023Updated 3 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• xenoscr / compressedCredBandit

  View on GitHub
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Jun 24, 2021Updated 5 years ago
• threatexpress / mythic2modrewrite

  View on GitHub
  Generate Apache mod_rewrite rules for Mythic C2 profiles
  ☆35Jul 22, 2021Updated 4 years ago
• EspressoCake / BeaconDownloadSync

  View on GitHub
  ☆93May 14, 2022Updated 4 years ago
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆132May 6, 2022Updated 4 years ago
• ajpc500 / RelayRumbler

  View on GitHub
  A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.
  ☆16Jul 2, 2021Updated 4 years ago
• securifybv / BOFRyptor

  View on GitHub
  ☆124Oct 9, 2023Updated 2 years ago
• cube0x0 / BofRoast

  View on GitHub
  Beacon Object Files for roasting Active Directory
  ☆238Feb 21, 2022Updated 4 years ago
• iilegacyyii / ThreadlessInject-BOF

  View on GitHub
  BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…
  ☆400Jan 9, 2024Updated 2 years ago
• frkngksl / NiCOFF

  View on GitHub
  COFF and BOF Loader written in Nim
  ☆176Apr 4, 2026Updated 2 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• EspressoCake / BetterPipename

  View on GitHub
  Example of using Sleep to create better named pipes.
  ☆41Jul 25, 2023Updated 2 years ago
• Mr-Un1k0d3r / RemoteProcessInjection

  View on GitHub
  C# remote process injection utility for Cobalt Strike
  ☆88Mar 9, 2020Updated 6 years ago
• Cerbersec / Ares

  View on GitHub
  Project Ares is a Proof of Concept (PoC) loader written in C/C++ based on the Transacted Hollowing technique
  ☆336Jan 16, 2022Updated 4 years ago
• trustedsec / CS_COFFLoader

  View on GitHub
  ☆138Dec 4, 2023Updated 2 years ago
• trustedsec / PPLFaultDumpBOF

  View on GitHub
  ☆145May 17, 2023Updated 3 years ago
• Flangvik / CobaltBus

  View on GitHub
  Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
  ☆247Feb 23, 2022Updated 4 years ago
• m3rcer / Chisel-Strike

  View on GitHub
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆460Mar 25, 2024Updated 2 years ago
• delivr-to / MailCollector

  View on GitHub
  A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM
  ☆20Jul 19, 2025Updated 11 months ago
• anthemtotheego / CredBandit

  View on GitHub
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆219Jul 14, 2021Updated 4 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• pkb1s / SharpRelay

  View on GitHub
  ☆182Feb 3, 2021Updated 5 years ago
• Henkru / cs-token-vault

  View on GitHub
  In-memory token vault BOF for Cobalt Strike
  ☆150Aug 18, 2022Updated 3 years ago
• outflanknl / FindObjects-BOF

  View on GitHub
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆274May 3, 2023Updated 3 years ago
• EncodeGroup / BOF-RegSave

  View on GitHub
  Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
  ☆218Oct 8, 2020Updated 5 years ago
• xforcered / BOFMask

  View on GitHub
  ☆128Jun 28, 2023Updated 3 years ago
• Henkru / cs-get-last-error

  View on GitHub
  An aggressor script for Cobalt Strike to query Windows' GetLastError messages
  ☆18Sep 25, 2022Updated 3 years ago
• MartinIngesen / TokenStomp

  View on GitHub
  C# implementation of the token privilege removal flaw discovered by @GabrielLandau/Elastic
  ☆143Feb 23, 2022Updated 4 years ago