Alternatives and similar repositories for aad-bofs:

Users that are interested in aad-bofs are comparing it to the libraries listed below

• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆92Updated 3 weeks ago
• ZephrFish / QoL-BOFs
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆116Updated 3 weeks ago
• Octoberfest7 / enumhandles_BOF
  ☆121Updated 4 months ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆82Updated 7 months ago
• ZERODETECTION / MSC_Dropper
  ☆132Updated 5 months ago
• deh00ni / NtDumpBOF
  ☆91Updated 4 months ago
• passthehashbrowns / BOFMask
  ☆110Updated last year
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆111Updated last month
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆157Updated last month
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆100Updated 8 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆84Updated 6 months ago
• realoriginal / titanldr-ng
  A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …
  ☆172Updated last year
• xpn / CloudInject
  ☆105Updated last month
• securifybv / BOFRyptor
  ☆120Updated last year
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆111Updated last year
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆106Updated 8 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆109Updated 3 weeks ago
• t94j0 / adexplorersnapshot-rs
  ☆74Updated 5 months ago
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆114Updated 3 months ago
• zimnyaa / noWatch
  Implant drop-in for EDR testing
  ☆131Updated last year
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆150Updated last year
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆149Updated last year
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆149Updated last month
• Retr0-code / hash-dumper
  Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…
  ☆54Updated last year
• wotwot563 / aad_prt_bof
  ☆97Updated 8 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆154Updated last week
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆75Updated last month
• mandiant / ccmpwn
  ☆186Updated 9 months ago
• decoder-it / RelabelAbuse
  ☆60Updated 7 months ago
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆61Updated 5 months ago