williamknows/SharpHound3

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/williamknows/SharpHound3)

williamknows / SharpHound3

C# Data Collector for the BloodHound Project, Version 3

☆37

Alternatives and similar repositories for SharpHound3

Users that are interested in SharpHound3 are comparing it to the libraries listed below

Sorting:

EspressoCake / PPLDump_BOF
View on GitHub
A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
☆143Sep 24, 2021Updated 4 years ago
ceramicskate0 / BOF-Builder
View on GitHub
C# .Net 5.0 project to build BOF (Beacon Object Files) in mass
☆25Jul 25, 2023Updated 2 years ago
t3hbb / citrixphishlet
View on GitHub
Citrix Phishlet
☆24Feb 2, 2021Updated 5 years ago
guervild / BOFs
View on GitHub
Cobalt Strike Beacon Object Files
☆167May 2, 2022Updated 3 years ago
trainr3kt / Readfile_BoF
View on GitHub
☆22Jun 21, 2022Updated 3 years ago
EspressoCake / HandleKatz_BOF
View on GitHub
A BOF port of the research of @thefLinkk and @codewhitesec
☆100Oct 12, 2021Updated 4 years ago
netero1010 / Quser-BOF
View on GitHub
Cobalt Strike BOF for quser.exe implementation using Windows API
☆87Mar 22, 2023Updated 2 years ago
trainr3kt / NoteThief
View on GitHub
Grab unsaved Notepad contents with a Beacon Object File
☆55Jun 19, 2022Updated 3 years ago
Dliv3 / cve-2019-1040-scanner
View on GitHub
☆12Oct 9, 2020Updated 5 years ago
sk3w / beacon-object-files
View on GitHub
Miscellaneous examples for use with Cobalt Strike Beacon
☆10Nov 19, 2020Updated 5 years ago
alfarom256 / BOF-ForeignLsass
View on GitHub
☆101Aug 23, 2021Updated 4 years ago
G0ldenGunSec / SharpTransactedLoad
View on GitHub
Load .net assemblies from memory while having them appear to be loaded from an on-disk location.
☆173May 5, 2021Updated 4 years ago
Henkru / cs-token-vault
View on GitHub
In-memory token vault BOF for Cobalt Strike
☆149Aug 18, 2022Updated 3 years ago
EspressoCake / DLL-Hijack-Search-Order-BOF
View on GitHub
DLL Hijack Search Order Enumeration BOF
☆149Nov 3, 2021Updated 4 years ago
Octoberfest7 / EventViewerUAC_BOF
View on GitHub
Beacon Object File implementation of Event Viewer deserialization UAC bypass
☆133May 6, 2022Updated 3 years ago
Sh0ckFR / InlineWhispers2
View on GitHub
Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2
☆187Jul 21, 2022Updated 3 years ago
soufianetahiri / CitrixSecureAccessAuthCookieDump
View on GitHub
Dump Citrix Secure Access auth cookie from the process memory
☆76Jun 24, 2022Updated 3 years ago
connormcgarr / tgtdelegation
View on GitHub
tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"
☆178Nov 26, 2021Updated 4 years ago
outflanknl / FindObjects-BOF
View on GitHub
A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
☆275May 3, 2023Updated 2 years ago
xforcered / Detect-Hooks
View on GitHub
Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
☆103Jul 22, 2021Updated 4 years ago
EspressoCake / DLL-Exports-Extraction-BOF
View on GitHub
DLL Exports Extraction BOF with optional NTFS transactions.
☆90Nov 5, 2021Updated 4 years ago
EspressoCake / Self_Deletion_BOF
View on GitHub
BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs
☆187Oct 3, 2021Updated 4 years ago
EspressoCake / Firewall_Walker_BOF
View on GitHub
A BOF to interact with COM objects associated with the Windows software firewall.
☆109Oct 10, 2021Updated 4 years ago
OG-Sadpanda / SharpExcelibur
View on GitHub
Read Excel Spreadsheets (XLS/XLSX) using Cobalt Strike's Execute-Assembly
☆90Sep 30, 2024Updated last year
boku7 / xPipe
View on GitHub
Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
☆94Mar 8, 2023Updated 2 years ago
ChoiSG / UuidShellcodeExec
View on GitHub
PoC for UUID shellcode execution using DInvoke
☆155Mar 8, 2021Updated 4 years ago
Octoberfest7 / Backstab_BOF
View on GitHub
Beacon Object File implementation of Yaxser's Backstab
☆15Mar 9, 2022Updated 3 years ago
N4kedTurtle / SharpTeamsDump
View on GitHub
Dump Teams conversations
☆18Jun 9, 2021Updated 4 years ago
nccgroup / DroppedConnection
View on GitHub
☆129Mar 1, 2023Updated 3 years ago
rasta-mouse / ExternalC2.NET
View on GitHub
.NET implementation of Cobalt Strike's External C2 Spec
☆89Nov 12, 2021Updated 4 years ago
netero1010 / TrustedPath-UACBypass-BOF
View on GitHub
Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.…
☆146Aug 16, 2021Updated 4 years ago
S3cur3Th1sSh1t / SharpVeeamDecryptor
View on GitHub
Decrypt Veeam database passwords
☆222Dec 8, 2025Updated 2 months ago
checkymander / Carbuncle
View on GitHub
Tool for interacting with outlook interop during red team engagements
☆146Jun 29, 2021Updated 4 years ago
xforcered / CredBandit
View on GitHub
Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
☆244Jul 14, 2021Updated 4 years ago
Jumbo-WJB / pspy-modify
View on GitHub
automatic privilege escalation by pspy
☆23Jan 19, 2022Updated 4 years ago
TheWover / CertStealer
View on GitHub
A .NET tool for exporting and importing certificates without touching disk.
☆501Oct 8, 2021Updated 4 years ago
Cobalt-Strike / beacon_health_check
View on GitHub
This aggressor script uses a beacon's note field to indicate the health status of a beacon.
☆141Sep 29, 2021Updated 4 years ago
optiv / Dent
View on GitHub
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
☆297Aug 18, 2023Updated 2 years ago
cube0x0 / BofRoast
View on GitHub
Beacon Object Files for roasting Active Directory
☆235Feb 21, 2022Updated 4 years ago