CS-Situational-Awareness-BOF
Situational awareness tools
Provides a set of basic situational awareness commands implemented in C.
Situational Awareness commands implemented using Beacon Object Files
1k stars
34 watching
222 forks
Language: C
last commit: about 1 month ago
Linked from 2 awesome lists
bofccna
zer0yu/awesome-cobaltstrike
uhub/awesome-cRelated projects:
| Repository | Description | Stars |
|---|---|---|
 ccob/bof.net | A .NET runtime framework for developing and executing malicious C code in a managed environment. | 682 |
| trustedsec/cs-remote-ops-bof | Provides tools and primitives for interacting with Microsoft Windows systems remotely. | 892 |
 riccardoancarani/bofs | Utilities for Cobalt Strike's Beacon Object Files to simplify working with shellcode and system processes | 112 |
 pwn1sher/cs-bofs | A collection of compiled beacon object files from the CobaltStrike platform. | 101 |
 crypt0p3g/bof-collection | A collection of beacon object files designed to be used in a remote access tool like Cobalt Strike. | 170 |
 boku7/halosgate-ps | A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. | 95 |
 trainr3kt/readfile_bof | Reads file contents and sends them to a beacon output as binary data. | 18 |
 cobalt-strike/bof-vs | A Beacon Object File Visual Studio template project for creating malicious code executables | 145 |
 securifybv/visual-studio-bof-template | A Visual Studio template to simplify the creation of Cobalt Strike beacon object files (BOFs) by providing default configurations and prebuilt function definitions. | 285 |
 encodegroup/bof-regsave | Creates a tool to extract registry keys from Windows systems using a Beacon Object File | 188 |
 mlcsec/asrenum-bof | Tools to detect and exploit vulnerabilities in Windows Attack Surface Reduction (ASR) settings | 142 |
 netero1010/trustedpath-uacbypass-bof | Tools and techniques to bypass Windows UAC restrictions on executable files by utilizing DCOM objects | 119 |
| trustedsec/pplfaultdumpbof | Tools for analyzing PPLFault-related malware behavior on Windows 10 | 134 |
 dtmsecurity/bof_helper | Creates C programs with custom API calls using Microsoft's documentation endpoint and grep results from mingw header files | 222 |
| trustedsec/coffloader | Tools and utilities for loading, testing, and analyzing malicious COFF files | 483 |