CBLabresearch / PhantomExecutionLinks
Self Cleanup in post-ex job
☆59Updated last year
Alternatives and similar repositories for PhantomExecution
Users that are interested in PhantomExecution are comparing it to the libraries listed below
Sorting:
- vehsyscall:a syscall project that may bypass EDR☆60Updated last year
- A BOF/COFF loader implemented in Go and CGO.☆22Updated last year
- Beacon compiled using clang☆72Updated 2 years ago
- ☆43Updated 2 years ago
- 一个demo☆23Updated last year
- kill AV/EDR☆22Updated 2 years ago
- Silently Install Chrome Extension For Persistence☆95Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆55Updated 2 years ago
- ☆28Updated 2 years ago
- more conveniently Visual-Studio-BOF-template☆73Updated 2 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆66Updated 2 months ago
- Rust 重构的 sRDI☆17Updated last year
- A Simple PoC☆21Updated last year
- Code with Windows Hacker☆12Updated 3 years ago
- Fork & modify of Wireguard's Memmod☆33Updated 2 years ago
- beta☆119Updated last year
- 自定义函数堆栈,从而绕过ETW检测,这个是完整版。☆13Updated last year
- ☆15Updated last year
- A little tool to play with Windows security☆12Updated 4 months ago
- Its a coff loader ported to go( Modified by TimWhite )☆27Updated 2 years ago
- load assembly executable file in memory☆41Updated 2 years ago
- A BOF to create a scheduled task using a COM object.☆15Updated last year
- ☆19Updated 3 years ago
- ☆19Updated 3 years ago
- AddDefenderExclusions Beacon Object File☆40Updated 2 years ago
- Evasive loader to bypass static detection☆59Updated last year
- RawCopy - Golang implementation☆24Updated 3 years ago
- Binary Hollowing☆89Updated last year
- Bypass EDR Create TaskServers☆37Updated 3 years ago
- ☆25Updated 8 months ago