Skip to content

@outflanknl Outflank B.V.

Change the repository type filter

All

    Repositories list

    37 repositories

    • nix_bof_template

      Public
      Beacon Object File (BOF) Template
      C
      Apache License 2.0
      78110Updated Mar 9, 2026Mar 9, 2026

    • macho-loader

      Public
      Position-independent Reflective Loader for macOS
      C++
      Apache License 2.0
      1812000Updated Feb 19, 2026Feb 19, 2026

    • macos-jit

      Public
      Proof-of-concept code for understanding the allow-jit entitlement on macOS
      C++
      Apache License 2.0
      13100Updated Feb 19, 2026Feb 19, 2026

    • RedELK

      Public
      Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
      securityelasticsearchkibana
      securityelasticsearchkibanalogstashmonitoringsiemelasticred-teaming
      Python
      BSD 3-Clause "New" or "Revised" License
      3962.6k111Updated Dec 13, 2025Dec 13, 2025

    • seccomp-notify-injection

      Public
      Linux Process Injection via Seccomp Notifier
      C
      Apache License 2.0
      88400Updated Dec 9, 2025Dec 9, 2025

    • Presentations

      Public
      Presentation material presented by Outflank team members at public events.
      3319200Updated Oct 1, 2025Oct 1, 2025

    • regcertipy

      Public
      Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does
      Python
      BSD 3-Clause "New" or "Revised" License
      99500Updated Jul 3, 2025Jul 3, 2025

    • Scripts

      Public
      Small scripts that make life better
      Python
      7630140Updated Jan 31, 2025Jan 31, 2025

    • edr-internals

      Public
      Tools for analyzing EDR agents
      C++
      GNU General Public License v3.0
      2727800Updated Jun 10, 2024Jun 10, 2024

    • Training-MSOfficeOffensiveTradecraft

      Public
      Info related to the Outflank training: Microsoft Office Offensive Tradecraft
      195200Updated May 16, 2024May 16, 2024

    • HelpColor

      Public
      Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type
      BSD 3-Clause "New" or "Revised" License
      3221200Updated Mar 18, 2024Mar 18, 2024

    • unmanaged-dotnet-patch

      Public
      Modify managed functions from unmanaged code
      C++
      MIT License
      85300Updated Feb 1, 2024Feb 1, 2024

    • EvilClippy

      Public
      A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs o…
      excelwordmalware
      excelwordmalwarevbams-officemacropcodestomping
      C#
      GNU General Public License v3.0
      4002.2k183Updated Dec 27, 2023Dec 27, 2023

    • C2-Tool-Collection

      Public
      A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
      C
      2171.4k13Updated Oct 27, 2023Oct 27, 2023

    • RedELK-workshop

      Public
      Items related to the RedELK workshop given at security conferences
      72900Updated Sep 28, 2023Sep 28, 2023

    • FindObjects-BOF

      Public
      A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or process handles.
      4727501Updated May 3, 2023May 3, 2023

    • WdToggle

      Public
      A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
      3022031Updated May 3, 2023May 3, 2023

    • CS-Situational-Awareness-BOF

      Public
      Situational Awareness commands implemented using Beacon Object Files
      C
      GNU General Public License v2.0
      285100Updated Jan 27, 2023Jan 27, 2023

    • RedFile

      Public
      Serving files with conditions, serverside keying and more.
      Python
      BSD 3-Clause "New" or "Revised" License
      31810Updated May 26, 2022May 26, 2022

    • Spray-AD

      Public
      A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.
      C++
      5344212Updated Apr 1, 2022Apr 1, 2022

    • InlineWhispers

      Public
      Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)
      Assembly
      4232110Updated Nov 9, 2021Nov 9, 2021

    • PrintNightmare

      Public
      C
      6934420Updated Sep 13, 2021Sep 13, 2021

    • external_c2

      Public
      POC for Cobalt Strike external C2
      C
      3114200Updated Sep 6, 2021Sep 6, 2021

    • Dumpert

      Public
      LSASS memory dumper using direct system calls and API unhooking.
      C
      2521.6k51Updated Jan 5, 2021Jan 5, 2021

    • Ps-Tools

      Public
      Ps-Tools, an advanced process monitoring toolkit for offensive operations
      C
      8335500Updated Dec 1, 2020Dec 1, 2020

    • TamperETW

      Public
      PoC to demonstrate how CLR ETW events can be tampered.
      C
      3119200Updated Mar 26, 2020Mar 26, 2020

    • Zipper

      Public
      Zipper, a CobaltStrike file and folder compression utility.
      C
      5022210Updated Jan 18, 2020Jan 18, 2020

    • Net-GPPPassword

      Public
      .NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy Preferences.
      C#
      3817800Updated Dec 18, 2019Dec 18, 2019

    • SharpHide

      Public
      Tool to create hidden registry keys.
      C#
      9449020Updated Oct 23, 2019Oct 23, 2019

    • Recon-AD

      Public
      Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
      C++
      5633110Updated Oct 20, 2019Oct 20, 2019