kozmer/dcsync-bof external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

kozmer/dcsync-bof

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kozmer/dcsync-bof)

Close

kozmer / dcsync-bofView on GitHubMore

• External links
• Readme badge

dcsync bof

☆46Feb 13, 2026Updated last month

Alternatives and similar repositories for dcsync-bof

Users that are interested in dcsync-bof are comparing it to the libraries listed below

• garrettfoster13 / mssqlkaren

  View on GitHub
  modified mssqlclient from impacket to extract policies from the SCCM database
  ☆46Feb 24, 2026Updated 3 weeks ago
• Cobalt-Strike / eden

  View on GitHub
  A PoC UDRL for Cobalt Strike built with Crystal Palace that combines Raphael Mudge's page streaming technique with a modular call gate (D…
  ☆107Jan 21, 2026Updated last month
• NocteDefensor / SCCMDecryptor-BOF

  View on GitHub
  ☆53Jun 28, 2025Updated 8 months ago
• logangoins / BadTakeover-BOF

  View on GitHub
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆86Oct 20, 2025Updated 5 months ago
• EspressoCake / DLL_Version_Enumeration_BOF

  View on GitHub
  A BOF for enumerating version information for DLLs associated for a Beacon process.
  ☆16Nov 23, 2021Updated 4 years ago
• TierZeroSecurity / killerPID-BOF

  View on GitHub
  BOF to terminate a process via PID as argument
  ☆28Sep 7, 2025Updated 6 months ago
• KingOfTheNOPs / ChangeWallpaper-BOF

  View on GitHub
  Cobalt Strike Beacon Object File to to change the user's desktop wallpaper
  ☆17Sep 15, 2023Updated 2 years ago
• T1erno / bin2shellcode

  View on GitHub
  C++ tool and library for converting .bin files to shellcode in multiple output formats.
  ☆34Aug 18, 2025Updated 7 months ago
• nickvourd / SugarFree

  View on GitHub
  Less sugar (entropy) for your binaries
  ☆33Sep 10, 2025Updated 6 months ago
• VoldeSec / BOF-NPPSPY

  View on GitHub
  Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…
  ☆19Apr 24, 2023Updated 2 years ago
• SpecterOps / SCOMHound

  View on GitHub
  ☆37Dec 4, 2025Updated 3 months ago
• dmcxblue / NtCreateUserProcessBOF

  View on GitHub
  An Aggressor Script that utilizes NtCreateUserProcess to run binaries
  ☆31Jan 30, 2025Updated last year
• Yeeb1 / MagicBOFs

  View on GitHub
  A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.
  ☆18Jul 15, 2025Updated 8 months ago
• Flangvik / RegPwnBOF

  View on GitHub
  Bof of RegPwn by MDSec
  ☆72Updated this week
• t1Sh1n4 / Invoke-SPSI

  View on GitHub
  Invoke-SPSI - Simple PowerShell Shellcode Injector
  ☆37Oct 9, 2025Updated 5 months ago
• tehstoni / cmstp_uac_bypass_bof

  View on GitHub
  ☆15May 30, 2025Updated 9 months ago
• RayRRT / ESC1-unPAC

  View on GitHub
  A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…
  ☆116Dec 21, 2025Updated 2 months ago
• 0xRedpoll / SignalKeyBOF

  View on GitHub
  BOF to decrypt Signal Desktop chat logs
  ☆70Feb 20, 2025Updated last year
• Leo4j / PPLKiller

  View on GitHub
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆64Jan 2, 2025Updated last year
• Hagrid29 / BOF-CredUI

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆23Nov 23, 2022Updated 3 years ago
• 0xRedpoll / ludus_cobaltstrike_teamserver

  View on GitHub
  Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers
  ☆18Mar 19, 2025Updated last year
• WKL-Sec / docker-cobaltstrike

  View on GitHub
  Docker container for running CobaltStrike 4.7 and above
  ☆24Mar 20, 2025Updated last year
• zyn3rgy / RelayInformer

  View on GitHub
  Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective
  ☆167Jan 12, 2026Updated 2 months ago
• milosilo / DLL-Proxy-Hijacking-Microsoft-Teams

  View on GitHub
  Tutorial covering how to discover DLLs for Hijacking and how to create proxy DLLS using Microsoft Teams as an example
  ☆16Apr 7, 2021Updated 4 years ago
• pard0p / PICO-Implant

  View on GitHub
  PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…
  ☆48Nov 9, 2025Updated 4 months ago
• ZephrFish / ADFSDump-PS

  View on GitHub
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆41Dec 7, 2025Updated 3 months ago
• 0x3rhy / BypassCredGuard-BOF

  View on GitHub
  BypassCredGuard CS BOF
  ☆51Jan 23, 2025Updated last year
• FuzzySecurity / DLL-Template

  View on GitHub
  Simple skeleton for a CPP DLL
  ☆67Jan 11, 2020Updated 6 years ago
• Kryp7os / SharpRBCD

  View on GitHub
  An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD
  ☆49Mar 10, 2025Updated last year
• almounah / orsted

  View on GitHub
  Orsted C2 Framework
  ☆115Feb 9, 2026Updated last month
• wwh1004 / AmsiBypassUacDetector

  View on GitHub
  Detect BypassUAC using AMSI
  ☆29Feb 18, 2025Updated last year
• CompassSecurity / pipeleek

  View on GitHub
  Pipeleek scans CI/CD logs and artifacts to detect leaked secrets and pivot from them
  ☆19Updated this week
• KingOfTheNOPs / Get-NetNTLM

  View on GitHub
  Internal Monologue BOF
  ☆79Dec 28, 2024Updated last year
• b1-team / dll-hijack

  View on GitHub
  Dll hijack -- just one macro
  ☆13Jul 3, 2023Updated 2 years ago
• dazzyddos / lsawhisper-bof

  View on GitHub
  A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, wit…
  ☆277Feb 21, 2026Updated 3 weeks ago
• M1ndo / WerDump

  View on GitHub
  A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass
  ☆168Sep 22, 2025Updated 5 months ago
• kozmer / aad-bofs

  View on GitHub
  ☆139Nov 17, 2025Updated 4 months ago
• RedSiege / Delta-Encoder

  View on GitHub
  ☆18Jun 25, 2024Updated last year
• ghost-ng / slinger

  View on GitHub
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆57Updated this week