cobaltstrike_bofs
System hive dumper
Exploits SeBackupPrivilege to dump remote system hives and credentials.
My CobaltStrike BOFS
159 stars
5 watching
24 forks
Language: C
last commit: over 2 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 alphabugx/csonvps | Automated deployment script for CobaltStrike 4.4 on VPS | 288 |
 falconforceteam/bof2shellcode | Converts Cobalt Strike BOF files to raw shellcode | 173 |
 0x3rhy/adduser-bof | A Cobalt Strike BOF that exploits a vulnerability to add an admin user | 69 |
 otterhacker/coffloader | An implementation of in-house CoffLoader supporting CobaltStrike standard BOF and BSS initialized variables. | 48 |
 boku7/halosgate-ps | A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. | 94 |
 rvrsh3ll/bof_collection | A collection of Cobalt Strike Beacon Objectives (BOFs) that perform various tasks such as domain information retrieval, clipboard data extraction, WiFi enumeration, port scanning, and registry persistence. | 581 |
 codextf2/cobaltstrike-headless | A tool that converts a headless Cobalt Strike client into a functional one. | 147 |
 octoberfest7/cve-2023-36874_bof | An exploit tool for a Windows vulnerability allowing an attacker to run arbitrary code as SYSTEM on Windows 10 and Windows 11 | 201 |
 cobalt-strike/unhook-bof | Removes API hooks from a malicious process | 54 |
 rsmudge/cve-2020-0796-bof | Exploits a vulnerability in SMBv3 compression to achieve privilege escalation and process manipulation. | 68 |
 fox-it/dissect.cobaltstrike | Library for dissecting and parsing data related to Cobalt Strike exploits | 147 |
| octoberfest7/dropspawn_bof | A CobaltStrike payload that uses DLL hijacking to spawn additional Beacons on Windows systems | 216 |
 hypnoze57/sharphound4cobalt | A tool for collecting and reporting network activity data to Cobalt Strike. | 46 |
 netero1010/quser-bof | A proof-of-concept implementation of a Windows API-based backdoor using the quser.exe utility | 83 |
 sentinel-one/cobaltstrikeparser | Deciphers CobaltStrike Beacon configurations from various formats. | 1,022 |