BOF-RegSave

Registry extractor

Creates a tool to extract registry keys from Windows systems using a Beacon Object File

Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File

GitHub

188 stars
7 watching
31 forks
Language: C
last commit: about 4 years ago
beaconbofcobalt-strikepentesting-toolsredteam

Related projects:

Repository Description Stars
mlcsec/asrenum-bof Tools to detect and exploit vulnerabilities in Windows Attack Surface Reduction (ASR) settings 142
crypt0p3g/bof-collection A collection of beacon object files designed to be used in a remote access tool like Cobalt Strike. 170
riccardoancarani/bofs Utilities for Cobalt Strike's Beacon Object Files to simplify working with shellcode and system processes 112
cobalt-strike/bof-vs A Beacon Object File Visual Studio template project for creating malicious code executables 145
cube0x0/bofroast Toolset for extracting and exploiting Kerberos authentication data from Active Directory domains 220
boku7/halosgate-ps A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. 95
0x3rhy/adduser-bof A Cobalt Strike BOF that exploits a vulnerability to add an admin user 70
strozfriedberg/cobaltstrike-config-extractor A toolset to extract and analyze configurations from malware samples known as Cobalt Strike Beacons. 148
netero1010/quser-bof A proof-of-concept implementation of a Windows API-based backdoor using the quser.exe utility 83
ceramicskate0/bof-builder Tool to compile and build Beacon Object Files (BOF) from a directory of files 26
rsmudge/unhook-bof Tool to remove API hooks from a Beacon process. 263
pwn1sher/cs-bofs A collection of compiled beacon object files from the CobaltStrike platform. 101
rvrsh3ll/bof_collection A collection of Cobalt Strike Beacon Objectives (BOFs) that perform various tasks such as domain information retrieval, clipboard data extraction, WiFi enumeration, port scanning, and registry persistence. 592
m57/cobaltstrike_bofs Exploits SeBackupPrivilege to dump remote system hives and credentials. 159
cobalt-strike/unhook-bof Removes API hooks from a malicious process 54