parzel / GoBofRunnerLinks
A BOF/COFF loader implemented in Go and CGO.
☆22Updated last year
Alternatives and similar repositories for GoBofRunner
Users that are interested in GoBofRunner are comparing it to the libraries listed below
Sorting:
- Self Cleanup in post-ex job☆58Updated last year
- Rust 重构的 sRDI☆15Updated last year
- ☆43Updated 2 years ago
- Silently Install Chrome Extension For Persistence☆92Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆53Updated 2 years ago
- vehsyscall:a syscall project that may bypass EDR☆59Updated last year
- Help red teams find opsec processes during engagements☆43Updated 10 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆57Updated 2 years ago
- Kill Everything AV/EDR☆27Updated 11 months ago
- ☆25Updated 6 months ago
- BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel☆26Updated last year
- AddDefenderExclusions Beacon Object File☆40Updated 2 years ago
- A Simple PoC☆21Updated last year
- CVE-2023-21707 EXP☆28Updated 2 years ago
- ☆27Updated 2 years ago
- 一个demo☆24Updated last year
- ☆31Updated 2 years ago
- ☆15Updated last year
- RawCopy - Golang implementation☆24Updated 2 years ago
- Its a coff loader ported to go( Modified by TimWhite )☆27Updated 2 years ago
- Fork & modify of Wireguard's Memmod☆33Updated 2 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆57Updated 2 weeks ago
- kill AV/EDR☆22Updated 2 years ago
- load assembly executable file in memory☆41Updated 2 years ago
- 一个普通的BOF用来BypassUAC☆22Updated last year
- A little tool to play with Windows security☆12Updated 2 months ago
- A BOF to create a scheduled task using a COM object.☆13Updated 10 months ago
- ☆19Updated 3 years ago
- More EFS coerced authentication method with PetitPotam.py☆26Updated 2 years ago
- Golang implement winrm client with pass the hash☆32Updated last year