Collection of beacon BOF written to learn windows and cobaltstrike
A quick PoC that uses DCOM (ShellWindows) for lateral movement. You will have to provide creds (username, password, and domain) on line 93-95 for it to work. If you wish to use the current user credentials, you can change line 110 to "authInfo->pAuthIdentityData = t2;", which is basically NULL. An aggressor script will follow. This is not meant to be used in production, it is just a PoC. A more useable version will land with the aggressor script.
To read more about porting (D)COM to C, please refer to this article: https://yaxser.github.io/CobaltStrike-BOF/