mr-r3bot / bof-modulesView external linksLinks
BOF for C2 framework
☆44Nov 9, 2024Updated last year
Alternatives and similar repositories for bof-modules
Users that are interested in bof-modules are comparing it to the libraries listed below
Sorting:
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆20Feb 8, 2024Updated 2 years ago
- HTML Smuggling with Web Assembly☆66Feb 20, 2024Updated last year
- Mythic C2 Agent written in x64 PIC C☆84Jan 29, 2025Updated last year
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- idk man this was the default github name☆35Apr 23, 2023Updated 2 years ago
- ☆21Feb 22, 2025Updated 11 months ago
- Extension functionality for the NightHawk operator client☆26Nov 3, 2023Updated 2 years ago
- Rehashing APIs to prevent hash based detection☆14Jan 7, 2025Updated last year
- ☆12Jul 2, 2023Updated 2 years ago
- Simple reverse ICMP shell☆14Apr 30, 2024Updated last year
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- Windows Administrator level Implant.☆50Sep 28, 2024Updated last year
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- A more reliable way of resolving syscall numbers in Windows☆54Feb 12, 2024Updated 2 years ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆72Nov 11, 2025Updated 3 months ago
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- Select any exported function in a dll as the new dll's entry point.☆82Oct 25, 2024Updated last year
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆116Jan 20, 2025Updated last year
- Modified versions of the Cobalt Strike Process Injection Kit☆105Jan 24, 2024Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆101Feb 28, 2023Updated 2 years ago
- BOF to decrypt Signal Desktop chat logs☆71Feb 20, 2025Updated 11 months ago
- An In-memory Embedding of CPython☆31May 24, 2021Updated 4 years ago
- An example reference design for a proposed BOF PE☆197Jan 23, 2026Updated 3 weeks ago
- A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.☆14Oct 31, 2023Updated 2 years ago
- find dll base addresses without PEB WALK☆157Jul 13, 2025Updated 7 months ago
- Sleep obfuscation☆265Dec 13, 2024Updated last year
- PoC for thread pool based process injection in Windows.☆120Mar 29, 2025Updated 10 months ago
- ☆100Sep 1, 2024Updated last year
- Nameless C2 - A C2 with all its components written in Rust☆282Sep 26, 2024Updated last year
- Your syscall factory☆126Jan 13, 2026Updated last month
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆107Mar 25, 2024Updated last year
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆34Nov 13, 2023Updated 2 years ago
- ☆126Sep 1, 2024Updated last year
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Apr 14, 2025Updated 10 months ago
- dump Chrome cookies remotely with atexec and CDP☆68Aug 10, 2024Updated last year
- Sliver extension performing TCP redirection tasks without performing cross-process injection.☆68Jan 14, 2025Updated last year
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆128Oct 4, 2024Updated last year
- ☆31Jul 26, 2024Updated last year
- A collection of position independent coding resources☆107Nov 15, 2025Updated 3 months ago