outflanknl/NetshHelperBeacon external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

outflanknl/NetshHelperBeacon

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/outflanknl/NetshHelperBeacon)

Close

outflanknl / NetshHelperBeaconView on GitHubMore

• External links
• Readme badge

Example DLL to load from Windows NetShell

☆182Sep 26, 2016Updated 9 years ago

Alternatives and similar repositories for NetshHelperBeacon

Users that are interested in NetshHelperBeacon are comparing it to the libraries listed below

• rsmudge / unhook-bof

  View on GitHub
  Remove API hooks from a Beacon process.
  ☆282Sep 18, 2021Updated 4 years ago
• codewhitesec / LethalHTA

  View on GitHub
  Lateral Movement technique using DCOM and HTA
  ☆235Oct 18, 2022Updated 3 years ago
• 0xbadjuju / WheresMyImplant

  View on GitHub
  A Bring Your Own Land Toolkit that Doubles as a WMI Provider
  ☆289Oct 31, 2018Updated 7 years ago
• RedSiege / WMIOps

  View on GitHub
  This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
  ☆388Jun 25, 2024Updated last year
• outflanknl / WdToggle

  View on GitHub
  A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
  ☆220May 3, 2023Updated 2 years ago
• Yaxser / CobaltStrike-BOF

  View on GitHub
  Collection of beacon BOF written to learn windows and cobaltstrike
  ☆362Feb 24, 2023Updated 3 years ago
• rasta-mouse / TikiTorch

  View on GitHub
  Process Injection
  ☆766Oct 24, 2021Updated 4 years ago
• outflanknl / DoH_c2_Trigger

  View on GitHub
  Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/
  ☆55Oct 25, 2018Updated 7 years ago
• Cn33liz / p0wnedLoader

  View on GitHub
  ☆78May 24, 2018Updated 7 years ago
• outflanknl / FindObjects-BOF

  View on GitHub
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆275May 3, 2023Updated 2 years ago
• neofito / RpcEndpointMapper

  View on GitHub
  Windows 7/2008 R2 EoP
  ☆13Feb 12, 2021Updated 5 years ago
• rvrsh3ll / CPLResourceRunner

  View on GitHub
  Run shellcode from resource
  ☆259Dec 13, 2020Updated 5 years ago
• cobbr / SharpGen

  View on GitHub
  SharpGen is a .NET Core console application that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framework console applica…
  ☆301Apr 23, 2021Updated 4 years ago
• boku7 / spawn

  View on GitHub
  Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
  ☆469Mar 8, 2023Updated 2 years ago
• huntresslabs / evading-autoruns

  View on GitHub
  Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)
  ☆106Feb 10, 2021Updated 5 years ago
• cobbr / SharpShell

  View on GitHub
  SharpShell is a proof-of-concept offensive C# scripting engine that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framew…
  ☆128Dec 11, 2018Updated 7 years ago
• darkoperator / vscode-language-aggressor

  View on GitHub
  Cobalt Strike Aggressor extension for Visual Studio Code
  ☆138Jun 20, 2024Updated last year
• sud0woodo / DCOMrade

  View on GitHub
  Powershell script for enumerating vulnerable DCOM Applications
  ☆266Nov 30, 2018Updated 7 years ago
• monoxgas / sRDI

  View on GitHub
  Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
  ☆2,507Nov 15, 2023Updated 2 years ago
• EncodeGroup / BOF-RegSave

  View on GitHub
  Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
  ☆216Oct 8, 2020Updated 5 years ago
• rasta-mouse / MiscTools

  View on GitHub
  Miscellaneous Tools
  ☆269Oct 29, 2020Updated 5 years ago
• mdsecactivebreach / CACTUSTORCH

  View on GitHub
  CACTUSTORCH: Payload Generation for Adversary Simulations
  ☆1,014Jul 3, 2018Updated 7 years ago
• outflanknl / SharpHide

  View on GitHub
  Tool to create hidden registry keys.
  ☆492Oct 23, 2019Updated 6 years ago
• anthemtotheego / SharpSploitConsole

  View on GitHub
  ☆182Feb 21, 2022Updated 4 years ago
• nettitude / PoshC2_Old

  View on GitHub
  Powershell C2 Server and Implants
  ☆575Nov 11, 2019Updated 6 years ago
• ryhanson / ExternalC2

  View on GitHub
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆290Nov 23, 2017Updated 8 years ago
• outflanknl / Excel4-DCOM

  View on GitHub
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆328Mar 26, 2019Updated 6 years ago
• threatexpress / cs2modrewrite

  View on GitHub
  Convert Cobalt Strike profiles to modrewrite scripts
  ☆611Jan 30, 2023Updated 3 years ago
• sensepost / rattler

  View on GitHub
  Automated DLL Enumerator
  ☆546Dec 21, 2017Updated 8 years ago
• Mr-Un1k0d3r / SCShell

  View on GitHub
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,607Jul 10, 2023Updated 2 years ago
• silentbreaksec / Throwback

  View on GitHub
  HTTP/S Beaconing Implant
  ☆311Aug 25, 2017Updated 8 years ago
• johnnyDEP / OWA-Toolkit

  View on GitHub
  Powershell module to assist in attacking Exchange/Outlook Web Access
  ☆182Sep 22, 2016Updated 9 years ago
• Cn33liz / CScriptShell

  View on GitHub
  CScriptShell, a Powershell Host running within cscript.exe
  ☆163Apr 11, 2017Updated 8 years ago
• SpiderLabs / SharpCompile

  View on GitHub
  SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…
  ☆290Aug 7, 2020Updated 5 years ago
• anthemtotheego / SharpExec

  View on GitHub
  ☆351Feb 21, 2022Updated 4 years ago
• Lexus89 / SharpPack

  View on GitHub
  A collection of C# tools for various purposes (kerberoasting, tickets, mimikatz, privesc, domain enumeration and more)
  ☆80Aug 12, 2019Updated 6 years ago
• rsmudge / Layer2-Pivoting-Client

  View on GitHub
  A simple client to demonstrate Layer-2 pivoting. Compatible with the simpletun.c server written by Davide Brini.
  ☆78Oct 15, 2014Updated 11 years ago
• byt3bl33d3r / pyMalleableC2

  View on GitHub
  Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
  ☆284Oct 29, 2024Updated last year
• giMini / mimiDbg

  View on GitHub
  PowerShell oneliner to retrieve wdigest passwords from the memory
  ☆220Dec 11, 2017Updated 8 years ago