BOF-RegSave
Registry extractor
Creates a tool to extract registry keys from Windows systems using a Beacon Object File
Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
188 stars
7 watching
31 forks
Language: C
last commit: about 4 years ago beaconbofcobalt-strikepentesting-toolsredteam
Related projects:
Repository | Description | Stars |
---|---|---|
mlcsec/asrenum-bof | Tools to detect and exploit vulnerabilities in Windows Attack Surface Reduction (ASR) settings | 142 |
crypt0p3g/bof-collection | A collection of beacon object files designed to be used in a remote access tool like Cobalt Strike. | 170 |
riccardoancarani/bofs | Utilities for Cobalt Strike's Beacon Object Files to simplify working with shellcode and system processes | 112 |
cobalt-strike/bof-vs | A Beacon Object File Visual Studio template project for creating malicious code executables | 145 |
cube0x0/bofroast | Toolset for extracting and exploiting Kerberos authentication data from Active Directory domains | 220 |
boku7/halosgate-ps | A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. | 95 |
0x3rhy/adduser-bof | A Cobalt Strike BOF that exploits a vulnerability to add an admin user | 70 |
strozfriedberg/cobaltstrike-config-extractor | A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. | 148 |
netero1010/quser-bof | A proof-of-concept implementation of a Windows API-based backdoor using the quser.exe utility | 83 |
ceramicskate0/bof-builder | Tool to compile and build Beacon Object Files (BOF) from a directory of files | 26 |
rsmudge/unhook-bof | Tool to remove API hooks from a Beacon process. | 263 |
pwn1sher/cs-bofs | A collection of compiled beacon object files from the CobaltStrike platform. | 101 |
rvrsh3ll/bof_collection | A collection of Cobalt Strike Beacon Objectives (BOFs) that perform various tasks such as domain information retrieval, clipboard data extraction, WiFi enumeration, port scanning, and registry persistence. | 592 |
m57/cobaltstrike_bofs | Exploits SeBackupPrivilege to dump remote system hives and credentials. | 159 |
cobalt-strike/unhook-bof | Removes API hooks from a malicious process | 54 |