CS-Situational-Awareness-BOF
Situational awareness tools
Provides a set of basic situational awareness commands implemented in C.
Situational Awareness commands implemented using Beacon Object Files
1k stars
35 watching
218 forks
Language: C
last commit: 2 months ago
Linked from 2 awesome lists
bofccna
zer0yu/awesome-cobaltstrike
uhub/awesome-cRelated projects:
| Repository | Description | Stars |
|---|---|---|
 ccob/bof.net | A .NET runtime framework for developing and executing malicious C code in a managed environment. | 678 |
| trustedsec/cs-remote-ops-bof | Provides tools and primitives for interacting with Microsoft Windows systems remotely. | 835 |
 riccardoancarani/bofs | Utilities for Cobalt Strike's Beacon Object Files to simplify working with shellcode and system processes | 111 |
 pwn1sher/cs-bofs | A collection of compiled beacon object files from the CobaltStrike platform. | 99 |
 crypt0p3g/bof-collection | A collection of beacon object files designed to be used in a remote access tool like Cobalt Strike. | 170 |
 boku7/halosgate-ps | A Cobalt Strike Beacon Object File (BOF) that uses custom syscaller code to make direct system calls to retrieve process information on the target system. | 94 |
 trainr3kt/readfile_bof | Reads file contents and sends them to a beacon output as binary data. | 18 |
 cobalt-strike/bof-vs | A Beacon Object File Visual Studio template project for creating malicious code executables | 138 |
 securifybv/visual-studio-bof-template | A Visual Studio template to simplify the creation of Cobalt Strike beacon object files (BOFs) by providing default configurations and prebuilt function definitions. | 282 |
 encodegroup/bof-regsave | Creates a tool to extract registry keys from Windows systems using a Beacon Object File | 186 |
 mlcsec/asrenum-bof | Tools to detect and exploit vulnerabilities in Windows Attack Surface Reduction (ASR) settings | 138 |
 netero1010/trustedpath-uacbypass-bof | Tools and techniques to bypass Windows UAC restrictions on executable files by utilizing DCOM objects | 117 |
| trustedsec/pplfaultdumpbof | Tools for analyzing PPLFault-related malware behavior on Windows 10 | 133 |
 dtmsecurity/bof_helper | Creates C programs with custom API calls using Microsoft's documentation endpoint and grep results from mingw header files | 221 |
| trustedsec/coffloader | Tools and utilities for loading, testing, and analyzing malicious COFF files | 471 |