• Stars
    star
    100
  • Rank 340,703 (Top 7 %)
  • Language
    C
  • Created over 3 years ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Collection of Beacon Object Files (BOFs) for shells and lols

BOFs

A collection of utilities for Cobalt Strike's Beacon Object Files to make our life easier.

Name Description Usage
send_shellcode_via_pipe A BOF that allows the operator to send a shellcode or any byte content via a named pipe. send_shellcode_via_pipe <pipe> <file>
cat As the name implies, finally allows you to get the content of a text file from Cobalt Strike. Supports remote shares. cat <file>
wts_enum_remote_processes Enumerate remote processes using WTS APIs, also useful to check if you have access to a system wts_enum_remote_processes <host>
unhook A BOF that uses direct syscalls to remove the hooks from a user-specified module. Compatible only with 64 bit beacons. unhook <module>, unhook ntdll.dll

NOTE: Side effects could include: nose bleed, unrecoverable and immediate death of your beacons.

A particular thanks to @ajpc500 for inspiration and from which I might or might not borrowed some code.

More Repositories

1

LiquidSnake

LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript
C#
329
star
2

TaskShell

C#
50
star
3

talks

42
star
4

bloodhound-playbook

Reproducible and extensible BloodHound playbooks
Python
39
star
5

instagram-insights

A jupyter notebook for extracting meaningful informations about your Instagram profile, like the best time to post and the hashtags that are generating more interactions
Jupyter Notebook
16
star
6

DirSync-Poc

A PoC that uses the DirSync protocol to poll Active Directory for changes
C#
13
star
7

pentesterlab-bootcamp

Writeup of what I'm learning with PentesterLab's Bootcamp
PHP
10
star
8

wild-hunt

A collection of tools and offensive techniques aimed at actively finding adversaries
6
star
9

metasploit_cheatsheet

A comprehensive list of the most useful Metasploit commands I found during my PT activity. Built using Latex/TexWorks
TeX
6
star
10

python_recommender_system

A simple user-based collaborative filtering recommender system, built with Python and Flask
Python
6
star
11

play-scrape

Play Store comment scraper
Jupyter Notebook
5
star
12

GPOPowerParser

A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc
Go
3
star
13

mushrooms-machine-learning

Safe to eat ore deadly poison? Let's use machine learning to find it out. A jupyter notebook that implements a possible solution to the Kaggle challenge, the ML model used is a Random Forest Classifier.
Jupyter Notebook
3
star
14

go-jwt-cracker

A simple GO utility to crack weak JWT secrets
Go
2
star
15

urlscango

A super simple interface for urlscan.io, written in Go.
Go
1
star
16

windows-binaries

1
star
17

RiccardoAncarani

1
star
18

python_offensive_scripts

A collection of Python scripts to automate/help during a pentest
Python
1
star