CredBandit
Memory dump tool
A proof-of-concept tool for dumping the memory of a process and sending it back through a custom communication channel.
Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication channel
233 stars
3 watching
26 forks
Language: C
last commit: over 3 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 espressocake/ppldump_bof | A tool for dumping the memory contents of a protected process on Windows | 136 |
 nightbringer21/fridump | A tool to dump memory from mobile devices using the Frida framework | 755 |
 alexandernst/memory-dumper | A tool for extracting data from process memory | 36 |
 rootbsd/fridump3 | A memory dumping tool using Frida to access and dump process memory from various platforms. | 186 |
 trainr3kt/memreader_bof | A tool that searches and extracts specific strings from another process's memory | 41 |
 gdbinit/readmem | A utility to dump process memory on the screen or to a binary file. | 223 |
 hagrid29/bof-credui | A C-based tool for invoking Windows credential prompt using the CredUIPromptForWindowsCredentials API | 18 |
 magnetforensics/dumpit-linux | Creates compact Linux memory images for analysis | 160 |
 crypt0p3g/bof-collection | A collection of beacon object files designed to be used in a remote access tool like Cobalt Strike. | 170 |
 ceramicskate0/bof-builder | Tool to compile and build Beacon Object Files (BOF) from a directory of files | 26 |
 alfarom256/bof-foreignlsass | A tool for duplicating an existing process's handle to LSASS, allowing dumping of the local session store. | 98 |
 citypw/lcamtuf-memfetch | Utility to dump process memory of running processes on Linux systems. | 40 |
 wumb0/rust_bof | A proof-of-concept project demonstrating how to create and compile Cobalt Strike Beacon Object Files in Rust | 254 |
 outflanknl/dumpert | A tool for creating a low-level memory dump of the LSASS process using direct system calls and API unhooking. | 1,496 |
 xoac/static-bytes | Prevents buffer overflows and simplifies byte manipulation in Rust | 6 |