Beacon Object Files

No mor fork and run

List of nice open source BOFs I've played with or think might be useful in engagements

  • https://github.com/helpsystems/nanodump - Stealthy LSASS dumping using cloned handles, exfiltrated over Beacon without touching disk. Uses syscalls.

  • https://github.com/CCob/BOF.NET - Allows implementation of .NET code as BOFs. Unlike traditional BOFs, can run as background jobs. Good for long running tasks such as custom keylogger capabilities.

  • Will add more as I go along

PreviousEvading Hunt-Sleeping-BeaconsNextMisc. Interesting Stuff

Last updated