Skip to content
/ BOFs Public

Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.

Notifications You must be signed in to change notification settings

rookuu/BOFs

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

2 Commits
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

Beacon Object Files

Name Syntax
MiniDumpWriteDump minidumpwritedump <PID> <path_of_dmp?>

MiniDumpWriteDump BOF (64-bit only)

Custom implementation of DbgHelp's MiniDumpWriteDump function. Uses static syscalls to replace low-level functions like NtReadVirtualMemory.

Syscalls generated using @jthuraisamy's SysWhispers and @Outflanknl's InlineWhispers.

Code is adapted from ReactOS's implementation of MiniDumpWriteDump at minidump.c.

About

Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published