Skip to content
View JKme's full-sized avatar
119 followers · 148 following

Achievements

Achievement: Starstruckx3Achievement: Pull Shark

Achievements

Achievement: Starstruckx3Achievement: Pull Shark

Block or report JKme

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Stars

BOF

26 repositories

EspressoCake / PPLDump_BOF

A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.

C 140 25 Updated Sep 24, 2021

CCob / BOF.NET

A .NET Runtime for Cobalt Strike's Beacon Object Files

C 709 105 Updated Sep 4, 2024

GhostPack / Koh

The Token Stealer

C# 493 66 Updated Jul 13, 2022

trainr3kt / NoteThief

Grab unsaved Notepad contents with a Beacon Object File

C 51 8 Updated Jun 19, 2022

netero1010 / RDPHijack-BOF

Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.

C 298 46 Updated Jul 8, 2022

Cracked5pider / CoffeeLdr

Beacon Object File Loader

C 286 39 Updated Dec 3, 2023

Henkru / cs-token-vault

In-memory token vault BOF for Cobalt Strike

C 142 25 Updated Aug 18, 2022

carlnykvist / Timestamp_BOF

C 13 3 Updated Aug 25, 2022

trustedsec / COFFLoader

C 521 78 Updated Apr 3, 2025

FalconForceTeam / BOF2shellcode

POC tool to convert CobaltStrike BOF files to raw shellcode

C 193 28 Updated Nov 5, 2021

CodeXTF2 / ScreenshotBOF

An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.

C 413 57 Updated Apr 22, 2025

CodeXTF2 / WindowSpy

WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.

C 266 36 Updated Feb 24, 2025

trustedsec / CS-Situational-Awareness-BOF

Situational Awareness commands implemented using Beacon Object Files

C 1,389 235 Updated Mar 26, 2025

EspressoCake / Defender_Exclusions-BOF

A BOF to determine Windows Defender exclusions.

C++ 245 37 Updated Jun 25, 2023

iilegacyyii / ThreadlessInject-BOF

BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released at BSides Cymru 2023.

C 378 55 Updated Jan 9, 2024

trustedsec / PPLFaultDumpBOF

C 140 11 Updated May 17, 2023

WKL-Sec / HiddenDesktop

HVNC for Cobalt Strike

C 1,213 187 Updated Dec 7, 2023

Octoberfest7 / DropSpawn_BOF

CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking

C 226 29 Updated Jun 8, 2023

qwqdanchun / ScreenShot-BOF

C 42 7 Updated Jul 10, 2023

baiyies / ScreenshotBOFPlus

Take a screenshot without injection for Cobalt Strike

C 186 11 Updated Jun 7, 2023

passthehashbrowns / BOFMask

C 120 27 Updated Jun 28, 2023

boku7 / halosgate-ps

Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes

C 104 24 Updated Mar 8, 2023

Mr-Un1k0d3r / Cookie-and-Handle-Stealer

C or BOF file to extract WebKit master key to decrypt user cookie

C 194 23 Updated Apr 29, 2024

Octoberfest7 / CVE-2023-36874_BOF

Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE

C++ 205 27 Updated Aug 25, 2023

KingOfTheNOPs / cookie-monster

BOF to steal browser cookies & credentials

C 281 30 Updated Apr 23, 2025

fortra / No-Consolation

A BOF that runs unmanaged PEs inline

C 593 69 Updated Oct 23, 2024