A demo of the relevant blog post: Introduction to Beacon Object Files
-
Updated
Mar 26, 2023 - C
A demo of the relevant blog post: Introduction to Beacon Object Files
Beacon Object File PoC implementation of KillDefender
Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for security professionals and enthusiasts.
Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.
Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
Take a screenshot without injection for Cobalt Strike
Generic PE loader for fast prototyping evasion techniques
Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.
助力每一位RT队员,快速生成免杀木马
Windows Event Log Killer
generate CobaltStrike's cross-platform payload
Add a description, image, and links to the cobalt-strike topic page so that developers can more easily learn about it.
To associate your repository with the cobalt-strike topic, visit your repo's landing page and select "manage topics."