AdminTest0 / Invoke-Obfuscation-BypassLinks
Invoke-Obfuscation-Bypass + PS2EXE 过主流杀软
☆54Updated 4 years ago
Alternatives and similar repositories for Invoke-Obfuscation-Bypass
Users that are interested in Invoke-Obfuscation-Bypass are comparing it to the libraries listed below
Sorting:
- ☆102Updated 2 years ago
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆58Updated 3 years ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆68Updated 2 years ago
- 过木马免杀制作器☆55Updated last year
- 通过WindowsAPI获取用户凭证,并保存到文件中☆194Updated last year
- CVE-2020-1472 C++☆83Updated 2 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆88Updated 3 years ago
- ☆49Updated 2 years ago
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago
- Bypass Windows Defender☆62Updated 3 years ago
- 调用x64dbg中的loadll.exe白加黑示例代码☆63Updated last year
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆149Updated 3 years ago
- CobaltStrike Malleable Profile☆23Updated 3 years ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆34Updated 3 years ago
- CrossC2通信协议API实现☆84Updated 4 years ago
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆148Updated 4 years ago
- Cobalt Strike BOF that Add an admin user☆78Updated 2 years ago
- geacon for apt profile☆21Updated 3 years ago
- Shellcode Reductio Entropy Tools☆71Updated last year
- CobaltStrike and Google Auth twice☆64Updated 3 years ago
- CVE-2020-0787的简单回显☆31Updated 3 years ago
- ☆92Updated 4 years ago
- ☆15Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆62Updated 4 months ago
- ☆46Updated 4 years ago
- command execute without 445 port☆52Updated 3 years ago
- Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code☆21Updated 2 years ago
- This is a daemon process which make a programe runing all time.☆84Updated 3 years ago
- 创建服务持久化☆107Updated 4 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Updated 2 years ago