1y0n / AVKiller
一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)
☆127Updated last year
Alternatives and similar repositories for AVKiller:
Users that are interested in AVKiller are comparing it to the libraries listed below
- 无Windows API的新型恶意程序:自缺陷程序利用堆栈溢出�的隐匿稳定攻击技术研究,A new type of malicious program without Windows API☆81Updated last week
- XOR 加密 分离免杀☆64Updated last year
- 主要用于隐藏进程真实路径,进程带windows真签名☆102Updated 5 months ago
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆76Updated 3 years ago
- 白加黑的快速生成器(针对IAT类型)☆95Updated 2 years ago
- 通过文件加载和远程URL加载�方式实现Shellcode分离加载☆31Updated last year
- ☆56Updated 7 months ago
- 收集云沙箱上线C2的ip,如微X、奇XX、3X0、virustX等☆123Updated last year
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆64Updated 3 weeks ago
- Cobalt Strike 二开项目☆182Updated 2 years ago
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆152Updated 7 months ago
- 免杀死亡笔记☆116Updated 2 years ago
- ☆43Updated 3 months ago
- 关于RPC一些绕EDR的tips☆164Updated 2 years ago
- 重构Beacon☆153Updated 7 months ago
- 远程创建任务计划工具☆183Updated 2 years ago
- 天问之路☆28Updated 3 weeks ago
- FTP lnk调用pythonw程序,用于攻防钓鱼场景下免杀运行捆绑木马文件☆60Updated 6 months ago
- A Blind EDR Project for Educational Purposes☆26Updated 2 months ago
- 绕过defender的完整项目☆33Updated 11 months ago
- 通过端口复用直接进行正向socks5代理(非防火墙分流)☆105Updated 3 months ago
- ☆52Updated last year
- 域内普通域用户权限查找域内所有计算机上登录的用户☆148Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆56Updated last year
- Binary Hollowing☆71Updated 6 months ago
- 免杀主流防病毒软件☆94Updated last week
- 提取域控日志,支持远程提取☆159Updated this week
- Supernova 的中文版和扩展了一些加密方式(ROT, XOR, RC4, AES, CHACHA20, B64XOR, B64RC4, B64AES, B64CHACHA20)☆50Updated last year
- 使用Visral Studio开发ShellCode☆189Updated last year