mandiant/harbinger

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mandiant/harbinger)

mandiant / harbinger

☆155

Alternatives and similar repositories for harbinger

Users that are interested in harbinger are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

MythicAgents / Hannibal
View on GitHub
A Mythic Agent written in PIC C.
☆204Feb 4, 2025Updated last year
rbmm / SC_DEMO
View on GitHub
☆128Dec 12, 2025Updated 5 months ago
wotwot563 / aad_prt_bof
View on GitHub
☆165Apr 17, 2024Updated 2 years ago
EspressoCake / cIdentifyServiceDependencies_BOF
View on GitHub
Beacon Object File (BOF) for identifying dependent child services of a given parent.
☆19Jun 20, 2025Updated 11 months ago
whokilleddb / hoontr
View on GitHub
A hoontr must hoont
☆106Nov 27, 2025Updated 6 months ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
Octoberfest7 / DropSpawn_BOF
View on GitHub
CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
☆289Jun 8, 2023Updated 3 years ago
ig-labs / defender-mpengine-fuzzing
View on GitHub
Fuzzing Harness and Unpatched Crash Results from Fuzzing Defender MpEngine
☆44Jul 29, 2025Updated 10 months ago
zimnyaa / smbsocks
View on GitHub
A simple rpc2socks alternative in pure Go.
☆31Jul 8, 2024Updated last year
SpecterOps / Nemesis
View on GitHub
An offensive data enrichment pipeline
☆964May 22, 2026Updated 2 weeks ago
Mr-Un1k0d3r / Cookie-and-Handle-Stealer
View on GitHub
C or BOF file to extract WebKit master key to decrypt user cookie
☆208Apr 29, 2024Updated 2 years ago
rasta-mouse / SpawnWith
View on GitHub
☆111Feb 17, 2025Updated last year
kapellos / LNKSmuggler
View on GitHub
A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
☆92Jan 8, 2025Updated last year
Patrick-DE / C2-logparser
View on GitHub
Parses logs created by Cobalt Strike, Brute Ratel, OC2 and creates an SQLite DB which can be used to create custom reports.
☆28Mar 18, 2026Updated 2 months ago
dsnezhkov / shutter
View on GitHub
☆125May 12, 2021Updated 5 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
whokilleddb / cs-bof-template
View on GitHub
Dockerized template to build CS BOFs using clang-cl
☆26Jan 29, 2026Updated 4 months ago
hoodoer / DragonHash
View on GitHub
Demo code JavaScript POC that tricks user into sending Windows hash to responder
☆37Dec 12, 2025Updated 5 months ago
EspressoCake / BetterPipename
View on GitHub
Example of using Sleep to create better named pipes.
☆41Jul 25, 2023Updated 2 years ago
MITRECND / picaboo
View on GitHub
Specialized tool to dump Position Independent Code.
☆22Aug 4, 2020Updated 5 years ago
OtterHacker / AWSRoundRobin
View on GitHub
☆41Updated this week
NtDallas / OdinLdr
View on GitHub
Cobaltstrike Reflective Loader with Synthetic Stackframe
☆189Jan 17, 2026Updated 4 months ago
NoahKirchner / speedloader
View on GitHub
Rust template/library for implementing your own COFF loader
☆72Jan 27, 2025Updated last year
tehstoni / cmstp_uac_bypass_bof
View on GitHub
☆16May 30, 2025Updated last year
SolomonSklash / netntlm
View on GitHub
A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
☆38Jul 27, 2021Updated 4 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
sudonoodle / BOF-entra-authcode-flow
View on GitHub
Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
☆131Jan 17, 2026Updated 4 months ago
MzHmO / TGSThief
View on GitHub
My implementation of the GIUDA project in C++
☆189Jul 25, 2023Updated 2 years ago
loland / inlineExecute
View on GitHub
Cobalt Strike BOF
☆58Dec 10, 2025Updated 6 months ago
LuemmelSec / APEX
View on GitHub
Azure Post Exploitation Framework
☆247Oct 27, 2025Updated 7 months ago
mastercodeon314 / NugetBackdoor
View on GitHub
A framework for backdooring Microsoft Nuget packages.
☆10Jan 9, 2024Updated 2 years ago
RiccardoAncarani / BOFs
View on GitHub
Collection of Beacon Object Files (BOFs) for shells and lols
☆124Sep 14, 2021Updated 4 years ago
Mr-Un1k0d3r / Elevate-System-Trusted-BOF
View on GitHub
☆179Mar 27, 2023Updated 3 years ago
nickvourd / SkyFall-Pack
View on GitHub
Your Skyfall Infrastructure Pack
☆99Jun 2, 2026Updated last week
dmcxblue / AzureFunctionRedirector
View on GitHub
☆49Apr 9, 2025Updated last year
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
ibaiC / FriendlyFireBOF
View on GitHub
A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
☆57Apr 14, 2025Updated last year
synacktiv / captaincredz
View on GitHub
CaptainCredz is a modular and discreet password-spraying tool.
☆136Jun 3, 2026Updated last week
Mr-Un1k0d3r / MsGraphFunzy
View on GitHub
Scripts to interact with Microsoft Graph APIs
☆46Nov 7, 2024Updated last year
NtDallas / Draugr
View on GitHub
BOF with Synthetic Stackframe
☆248Oct 30, 2025Updated 7 months ago
EspressoCake / BOF_Development_Docker
View on GitHub
A VSCode devcontainer for development of COFF files with batteries included.
☆50Jul 10, 2023Updated 2 years ago
synacktiv / Prox-Ez
View on GitHub
☆109Feb 11, 2026Updated 4 months ago
zyn3rgy / smbtakeover
View on GitHub
BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
☆358Nov 19, 2024Updated last year