snovvcrash / BOFsLinks
Beacon Object Files (not Buffer Overflows)
☆56Updated 2 years ago
Alternatives and similar repositories for BOFs
Users that are interested in BOFs are comparing it to the libraries listed below
Sorting:
- A care package of useful bofs for red team engagments☆55Updated 10 months ago
- A VSCode plugin to assist with BOF development.☆37Updated last year
- ☆43Updated 2 years ago
- DLL Exports Extraction BOF with optional NTFS transactions.☆83Updated 3 years ago
- Click Once + App Domain☆64Updated last year
- Cobalt Strike BOF for quser.exe implementation using Windows API☆87Updated 2 years ago
- ☆31Updated 2 years ago
- Cobalt Strike beacon object file that allows you to query and make changes to the Windows Registry☆27Updated 4 years ago
- ☆71Updated 3 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆33Updated last year
- Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt☆21Updated 2 years ago
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆87Updated 3 years ago
- ☆25Updated 3 years ago
- Python module for running BOFs☆74Updated 2 years ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆41Updated 2 years ago
- ☆79Updated 2 years ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆85Updated 2 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆41Updated 2 years ago
- Example of using Sleep to create better named pipes.☆41Updated 2 years ago
- Unchain AMSI by patching the provider’s unmonitored memory space☆91Updated 2 years ago
- ☆24Updated last year
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆23Updated 2 years ago
- ☆27Updated last year
- My implementation of Halo's Gate technique in C#☆54Updated 3 years ago
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆29Updated 3 years ago
- ☆129Updated last year
- I have documented all of the AMSI patches that I learned till now☆74Updated 6 months ago
- Beacon Object File allowing creation of Beacons in different sessions.☆80Updated 3 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆102Updated 2 years ago
- Sleep Obfuscation☆45Updated 3 years ago