Alternatives and similar repositories for BOF-DLL-Inject

Users that are interested in BOF-DLL-Inject are comparing it to the libraries listed below

• rxwx / cs-rdll-ipc-example
  Example code for using named pipe output with beacon ReflectiveDLLs
  ☆120Updated 5 years ago
• SolomonSklash / SyscallPOC
  Shellcode injection POC using syscalls.
  ☆117Updated 5 years ago
• mez-0 / winrmdll
  C++ WinRM API via Reflective DLL
  ☆145Updated 4 years ago
• byt3bl33d3r / BOF-Nim
  Cobalt Strike BOF Files with Nim!
  ☆86Updated 3 years ago
• r3nhat / XORedReflectiveDLL
  Reflective DLL Injection with obfuscated (XOR) shellcode
  ☆73Updated 5 years ago
• boku7 / injectEtwBypass
  CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)
  ☆299Updated 4 years ago
• ChoiSG / UuidShellcodeExec
  PoC for UUID shellcode execution using DInvoke
  ☆155Updated 4 years ago
• dtmsecurity / bof_helper
  Beacon Object File (BOF) Creation Helper
  ☆235Updated 3 years ago
• Octoberfest7 / KDStab
  BOF combination of KillDefender and Backstab
  ☆170Updated 2 years ago
• mez-0 / InMemoryNET
  Exploring in-memory execution of .NET
  ☆138Updated 3 years ago
• DamonMohammadbagher / NativePayload_CBT
  NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)
  ☆118Updated 2 years ago
• forrest-orr / artifacts-kit
  Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windo…
  ☆233Updated last year
• py7hagoras / GetSystem
  This is a C# implementation of making a process/executable run as NT AUTHORITY/SYSTEM. This is achieved through parent ID spoofing of alm…
  ☆109Updated 2 years ago
• waldo-irc / LockdExeDemo
  A demo of the relevant blog post: https://www.arashparsa.com/hook-heaps-and-live-free/
  ☆194Updated 4 years ago
• rookuu / BOFs
  Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.
  ☆185Updated 4 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆241Updated last year
• RedSiege / Screenshooter
  C# program to take a full size screenshot or a recording of the user's desktop. Takes in 0-3 flags
  ☆83Updated 5 years ago
• Kara-4search / HellgateLoader_CSharp
  Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.
  ☆17Updated 4 years ago
• sailay1996 / windows-stuff
  my learning case about windows
  ☆21Updated 3 years ago
• m57 / cobaltstrike_bofs
  My CobaltStrike BOFS
  ☆165Updated 3 years ago
• rsmudge / unhook-bof
  Remove API hooks from a Beacon process.
  ☆283Updated 4 years ago
• anthemtotheego / Detect-Hooks
  Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
  ☆158Updated 4 years ago
• n4ll3ec / AggressorSploit
  Collect & Optimize awesome CobaltStrike aggressor scripts, hope to create a All-In-One framework.
  ☆37Updated 5 years ago
• bats3c / DefensiveInjector
  Shellcode injector using direct syscalls
  ☆123Updated 5 years ago
• sailay1996 / RpcSsImpersonator
  Privilege Escalation Via RpcSs svc
  ☆180Updated 4 years ago
• outflanknl / WdToggle
  A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
  ☆220Updated 2 years ago
• connormcgarr / cThreadHijack
  Beacon Object File (BOF) for remote process injection via thread hijacking
  ☆217Updated 5 years ago
• alfarom256 / StinkyLoader
  It stinks
  ☆104Updated 3 years ago
• magnusstubman / MagnusKatz
  Research project for understanding how Mimikatz work and become better at C
  ☆124Updated 4 years ago
• skahwah / encrypt
  Pseudorandom AES-256 encryption designed to protect shellcode and arbitrary strings. C# and C/C++ compatible.
  ☆101Updated 4 years ago