rvrsh3ll / BOF_CollectionLinks
Various Cobalt Strike BOFs
☆686Updated 2 years ago
Alternatives and similar repositories for BOF_Collection
Users that are interested in BOF_Collection are comparing it to the libraries listed below
Sorting:
- A .NET Runtime for Cobalt Strike's Beacon Object Files☆752Updated last year
- Collection of Beacon Object Files☆614Updated 2 years ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆697Updated 2 years ago
- PIC lsass dumper using cloned handles☆593Updated 2 years ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆469Updated 2 years ago
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆476Updated 2 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆807Updated last year
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆382Updated 2 years ago
- TCP Port Redirection Utility☆741Updated 2 years ago
- BadAssMacros - C# based automated Malicous Macro Generator.☆429Updated 3 years ago
- A .NET Framework 4.0 Windows Agent☆502Updated 3 weeks ago
- Creating a repository with all public Beacon Object Files (BoFs)☆527Updated 2 years ago
- Inject .NET assemblies into an existing process☆504Updated 3 years ago
- Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)☆465Updated 3 years ago
- ☆581Updated 2 months ago
- Cobalt Strike UDRL for memory scanner evasion.☆980Updated last year
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)☆318Updated 3 years ago
- ☆531Updated 3 years ago
- A User Impersonation tool - via Token or Shellcode injection☆420Updated 3 years ago
- A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk☆464Updated last year
- Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!☆449Updated 2 years ago
- Command line interface to dump LSASS memory to disk via SilentProcessExit☆453Updated 4 years ago
- ☆1,036Updated 7 months ago
- Cobalt Strike kit for Persistence☆483Updated 5 years ago
- C# tool for UAC bypasses☆444Updated 4 years ago
- Command and Control Framework written in C#☆420Updated 2 years ago
- Cobalt Strike kit for Lateral Movement☆678Updated 5 years ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,091Updated 2 years ago
- Project for identifying executables and DLLs vulnerable to relative path DLL hijacking.☆476Updated last year
- Dump the memory of a PPL with a userland exploit☆882Updated 3 years ago