nick-frischkorn/SuspendEventLogBOF external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nick-frischkorn/SuspendEventLogBOF

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nick-frischkorn/SuspendEventLogBOF)

Close

nick-frischkorn / SuspendEventLogBOFView on GitHubMore

• External links
• Readme badge

Beacon Object File to locate and suspend the threads hosting the Event Log service

☆29Jun 17, 2022Updated 3 years ago

Alternatives and similar repositories for SuspendEventLogBOF

Users that are interested in SuspendEventLogBOF are comparing it to the libraries listed below

• nick-frischkorn / TokenStripBOF

  View on GitHub
  Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process
  ☆47Jun 15, 2022Updated 3 years ago
• MaorSabag / fileSearcher

  View on GitHub
  A simple BOF (Beacon Object File) to search files in the system
  ☆15Dec 2, 2023Updated 2 years ago
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆133May 6, 2022Updated 3 years ago
• matro7sh / bof-collection

  View on GitHub
  collection of beacon object file (Cobalt strike)
  ☆12Jan 21, 2023Updated 3 years ago
• S4ntiagoP / freeBokuLoader

  View on GitHub
  A simple BOF that frees UDRLs
  ☆122May 29, 2022Updated 3 years ago
• ricardojoserf / BOF_Files

  View on GitHub
  Repository to gather the BOF files I will be developing
  ☆11Oct 1, 2024Updated last year
• guervild / BOFs

  View on GitHub
  Cobalt Strike Beacon Object Files
  ☆167May 2, 2022Updated 3 years ago
• EspressoCake / DLL_Version_Enumeration_BOF

  View on GitHub
  A BOF for enumerating version information for DLLs associated for a Beacon process.
  ☆16Nov 23, 2021Updated 4 years ago
• Hagrid29 / BOF-RemoteRegSave

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses RegConnectRegistryA + RegOpenKeyExA API to dump registry hives on remote computer
  ☆17Mar 4, 2023Updated 3 years ago
• EspressoCake / Process_Protection_Level_BOF

  View on GitHub
  ☆61Aug 30, 2021Updated 4 years ago
• EspressoCake / DynamicTabRename

  View on GitHub
  CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.
  ☆25May 23, 2022Updated 3 years ago
• NVISOsecurity / cs2br-bof

  View on GitHub
  Run Cobalt Strike BOFs in Brute Ratel C4!
  ☆86Apr 15, 2025Updated 10 months ago
• ewby / Mockingjay_BOF

  View on GitHub
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆158Nov 7, 2023Updated 2 years ago
• anthemtotheego / Detect-Hooks

  View on GitHub
  Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
  ☆158Jul 22, 2021Updated 4 years ago
• pwn1sher / CS-BOFs

  View on GitHub
  Collection of CobaltStrike beacon object files
  ☆105Feb 14, 2022Updated 4 years ago
• EspressoCake / Needle_Sift_BOF

  View on GitHub
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Sep 27, 2021Updated 4 years ago
• dmcxblue / SharpHIBP

  View on GitHub
  A C# Tool to gather information about email breaches
  ☆16Dec 21, 2023Updated 2 years ago
• boku7 / whereami

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environment strings without touching any DLL…
  ☆183Mar 13, 2023Updated 2 years ago
• yamakadi / ldr

  View on GitHub
  A work in progress BOF/COFF loader in Rust
  ☆50Mar 22, 2023Updated 2 years ago
• trainr3kt / Readfile_BoF

  View on GitHub
  ☆22Jun 21, 2022Updated 3 years ago
• Hagrid29 / BOF-DCOMPotato-PrintNotify

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
  ☆97Mar 20, 2023Updated 2 years ago
• EspressoCake / Toggle_Token_Privileges_BOF

  View on GitHub
  Syscall BOF to arbitrarily add/detract process token privilege rights.
  ☆61Jul 10, 2024Updated last year
• EspressoCake / Firewall_Walker_BOF

  View on GitHub
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆109Oct 10, 2021Updated 4 years ago
• 0x3rhy / BypassCredGuard-BOF

  View on GitHub
  BypassCredGuard CS BOF
  ☆51Jan 23, 2025Updated last year
• tomcarver16 / BOF-DLL-Inject

  View on GitHub
  Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
  ☆152Sep 3, 2020Updated 5 years ago
• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆94Mar 8, 2023Updated 3 years ago
• Octoberfest7 / Backstab_BOF

  View on GitHub
  Beacon Object File implementation of Yaxser's Backstab
  ☆15Mar 9, 2022Updated 3 years ago
• tvgdb / cobaltstrike-cat-bof

  View on GitHub
  A Beacon Object File (BOF) implementation of the 'cat' command
  ☆27Feb 11, 2023Updated 3 years ago
• SilvestriF3 / Passworld

  View on GitHub
  Passworld is a fully customizable wordlist generator
  ☆16Sep 13, 2024Updated last year
• Sh0ckFR / InlineWhispers2

  View on GitHub
  Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2
  ☆186Jul 21, 2022Updated 3 years ago
• Hagrid29 / BOF-SprayAD

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
  ☆47Mar 4, 2023Updated 3 years ago
• FalconForceTeam / SysWhispers2BOF

  View on GitHub
  Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs
  ☆125May 24, 2022Updated 3 years ago
• paranoidninja / BRC4-Seminar-Stage-I

  View on GitHub
  These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be…
  ☆22Aug 26, 2023Updated 2 years ago
• apokryptein / secinject

  View on GitHub
  Section Mapping Process Injection (secinject): Cobalt Strike BOF
  ☆102Jan 7, 2022Updated 4 years ago
• zha0 / DarkPulsar

  View on GitHub
  EQGRP: Replicating DarkPulsar, an DLL capable of hooking Security Package Method Tables on the Heap!
  ☆10Oct 11, 2020Updated 5 years ago
• Henkru / cs-token-vault

  View on GitHub
  In-memory token vault BOF for Cobalt Strike
  ☆149Aug 18, 2022Updated 3 years ago
• N4kedTurtle / PersistBOF

  View on GitHub
  A BOF to automate common persistence tasks for red teamers
  ☆295Mar 7, 2023Updated 3 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 2 years ago
• Crypt0s / DelegationBOF

  View on GitHub
  ☆142May 4, 2022Updated 3 years ago