EspressoCake

EspressoCake

Somewhere, doing something.

366 followers · 14 following

Achievements

ScreenshotBOF Public
Forked from CodeXTF2/ScreenshotBOF

An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.

C MIT License Updated Dec 7, 2025
cIdentifyServiceDependencies_BOF Public

Beacon Object File (BOF) for identifying dependent child services of a given parent.

C++ 19 3 Updated Jun 20, 2025
bloodhound_community Public

Configuration generator and metadata grabber for containerized Bloodhound Community Edition deployments

Go 1 Updated Jun 18, 2025
adidns_walker Public

Parse records of ADIDNS dumped data for valid A records with associated IP addresses

Rust 1 Updated Feb 27, 2025
ADIDNS_Parser Public

Parser and reconciliation tooling for large Active Directory environments.

Rust 33 Updated Feb 18, 2025
BOF_NativeAPI_Definitions-VSCode Public

A VSCode plugin to assist with BOF development.

JavaScript 37 6 Updated Aug 14, 2024
Toggle_Token_Privileges_BOF Public

Syscall BOF to arbitrarily add/detract process token privilege rights.

C 61 20 Updated Jul 10, 2024
DojoLoader Public
Forked from naksyn/DojoLoader

Generic PE loader for fast prototyping evasion techniques

C 5 1 Apache License 2.0 Updated Jul 2, 2024
ReadRemoteProcessCommandline_BOF Public

C 29 6 Updated May 10, 2024
PE_Extractor Public

A PE extractor from a sea of data.

Go 1 Updated Nov 25, 2023
Bloodhound_Community_Docker Public

Generator of docker-compose file to allow secure configurations and multi-deployment strategy.

Go 12 4 Updated Nov 7, 2023
DefenderPathExclusions Public

Creation and removal of Defender path exclusions and exceptions in C#.

C# 32 8 Updated Nov 1, 2023
Defender-Exclusions-Creator-BOF Public

C++ 83 15 Updated Nov 1, 2023
ligolo-ng Public
Forked from nicocha30/ligolo-ng

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Go 2 GNU General Public License v3.0 Updated Jul 26, 2023
BetterPipename Public

Example of using Sleep to create better named pipes.

41 4 Updated Jul 25, 2023
BOF_Development_Docker Public

A VSCode devcontainer for development of COFF files with batteries included.

Dockerfile 50 3 Updated Jul 10, 2023
Defender_Exclusions-BOF Public

A BOF to determine Windows Defender exclusions.

C++ 253 39 Updated Jun 25, 2023
PII_Generator Public

Fake PII Generator

Go 3 1 Updated Jun 23, 2023
BOF.NET Public
Forked from williamknows/BOF.NET

A .NET Runtime for Cobalt Strike's Beacon Object Files

C Updated May 22, 2023
dufflebag Public
Forked from BishopFox/dufflebag

Search exposed EBS volumes for secrets

Go GNU General Public License v3.0 Updated Apr 24, 2023
REFramework Public
Forked from praydog/REFramework

Scripting platform, modding framework and VR support for all RE Engine games

C++ MIT License Updated Apr 1, 2023
proxyplease Public
Forked from aus/proxyplease

Cross-platform proxy selection with optional native authentication negotiation

Go MIT License Updated Feb 25, 2023
MITRE_ATTACK_CLI Public

CLI Search for Security Operators of MITRE ATT&CK URLs

Go 17 2 Updated Jan 5, 2023
RecreateCSDownloadsTree Public

Generation of TOML metadata for recreating directory structures from Cobalt Strike Beacon downloads.

Go 9 2 Updated Sep 23, 2022
EntropyFix Public

reducing the entropy of your payload

C 11 11 Updated Aug 15, 2022
callback_injection-Csharp Public
Forked from 0xsp-SRD/callback_injection-Csharp

this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback functions

C# MIT License Updated Jun 24, 2022
TitanLdr Public
Forked from moonlight-junky/TitanLdr

Public variation of Titan Loader

C 1 Updated Jun 18, 2022
DynamicTabRename Public

CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.

25 3 Updated May 23, 2022
BeaconDownloadSync Public

94 10 Updated May 14, 2022
pycobalt Public
Forked from dcsync/pycobalt

Cobalt Strike Python API

Python Updated Jan 27, 2022

EspressoCake

Achievements

Achievements

ScreenshotBOF Public

Uh oh!

cIdentifyServiceDependencies_BOF Public

Uh oh!

bloodhound_community Public

Uh oh!

adidns_walker Public

Uh oh!

ADIDNS_Parser Public

Uh oh!

BOF_NativeAPI_Definitions-VSCode Public

Uh oh!

Toggle_Token_Privileges_BOF Public

Uh oh!

DojoLoader Public

Uh oh!

ReadRemoteProcessCommandline_BOF Public

Uh oh!

PE_Extractor Public

Uh oh!

Bloodhound_Community_Docker Public

Uh oh!

DefenderPathExclusions Public

Uh oh!

Defender-Exclusions-Creator-BOF Public

Uh oh!

ligolo-ng Public

Uh oh!

BetterPipename Public

Uh oh!

BOF_Development_Docker Public

Uh oh!

Defender_Exclusions-BOF Public

Uh oh!

PII_Generator Public

Uh oh!

BOF.NET Public

Uh oh!

dufflebag Public

Uh oh!

REFramework Public

Uh oh!

proxyplease Public

Uh oh!

MITRE_ATTACK_CLI Public

Uh oh!

RecreateCSDownloadsTree Public

Uh oh!

EntropyFix Public

Uh oh!

callback_injection-Csharp Public

Uh oh!

TitanLdr Public

Uh oh!

DynamicTabRename Public

Uh oh!

BeaconDownloadSync Public

Uh oh!

pycobalt Public

Uh oh!