BOF-DLL-Inject

BOF DLL Inject is a custom Beacon Object File that uses manual map DLL injection in order to migrate a dll into a process all from memory.

Advantages

Less likely to be signatured
DLL payload stays in memory and never touches disk
Additional functionality is easy to implement
DLL isn't registered as a module including the EPROCESS structure in kernel land

To see how I developed this tool and further information on it see my blog post

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
README.md		README.md
beacon.h		beacon.h
cobalt-strike-mandll.png		cobalt-strike-mandll.png
inject.c		inject.c
inject.cna		inject.cna
inject.o		inject.o
test32.dll		test32.dll
test64.dll		test64.dll