Add: EspressoCake/Process_Protection_Level_BOF to Recon section

2025-01-05 13:00:49 -05:00 · 2021-08-31 10:47:28 +07:00 · 2021-08-31 10:47:28 +07:00 · 7412803fe6
commit 7412803fe6
parent 9df9939793
1 changed files with 4 additions and 0 deletions
--- a/Offensive.md
+++ b/Offensive.md
@ -71,6 +71,10 @@ Some tools can be categorized in more than one category. But because the current
        <td><a href="https://github.com/dsnezhkov/TruffleSnout">dsnezhkov/TruffleSnout</a></td>
        <td>Iterative AD discovery toolkit for offensive operations</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/EspressoCake/Process_Protection_Level_BOF">EspressoCake/Process_Protection_Level_BOF</a></td>
+        <td>A Syscall-only BOF file intended to grab process protection attributes, limited to a handful that Red Team operators and pentesters would commonly be interested in.</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/fashionproof/CheckSafeBoot">fashionproof/CheckSafeBoot</a></td>
        <td>I used this to see if an EDR is running in Safe Mode</td>