Alternatives and similar repositories for bof-collection

Users that are interested in bof-collection are comparing it to the libraries listed below

• trainr3kt / Readfile_BoF
  ☆22Updated 3 years ago
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆22Updated 2 years ago
• scriptchildie / gohellsgate
  Golang Implementation of Hell's gate
  ☆19Updated 2 years ago
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆40Updated last year
• 0xbad53c / OffSecOps-Arsenal
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆43Updated last year
• wsummerhill / IPv4Fuscation-Encrypted
  ☆20Updated last year
• AonCyberLabs / DUALITY
  ☆18Updated last year
• Octoberfest7 / Backstab_BOF
  Beacon Object File implementation of Yaxser's Backstab
  ☆15Updated 3 years ago
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆84Updated 2 years ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• vysecurity / Nemesis-Download-Watcher
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆15Updated last year
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated 2 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 3 years ago
• jnqpblc / SharpReg
  SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.
  ☆29Updated 5 years ago
• Hackcraft-Labs / SharpShares
  Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
  ☆33Updated last year
• cyndicatelabs / brc4_profile_maker
  An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.
  ☆28Updated 4 months ago
• V3ded / ToolDump-v1
  Some of my custom "tools".
  ☆29Updated 3 years ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 3 years ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆33Updated 3 years ago
• EspressoCake / ReadRemoteProcessCommandline_BOF
  ☆26Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆29Updated last year
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated 2 years ago
• jsecu / ElevatedEvents
  ☆31Updated 2 years ago
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆19Updated 2 years ago
• Wh04m1001 / PICDumper
  ☆25Updated 3 years ago
• redskal / malrdp-deploy
  Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible
  ☆12Updated 2 years ago
• mgeeky / unhook-bof
  Remove API hooks from a Beacon process.
  ☆14Updated 4 years ago
• mdsecactivebreach / PleasantTools
  Tools for Attacking Pleasant Password Server
  ☆22Updated 2 years ago
• slemire / bof-adopt
  BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆16Updated 3 years ago