CBLabresearch / PhantomExecutionLinks
Self Cleanup in post-ex job
☆55Updated 8 months ago
Alternatives and similar repositories for PhantomExecution
Users that are interested in PhantomExecution are comparing it to the libraries listed below
Sorting:
- ☆40Updated last year
- vehsyscall:a syscall project that may bypass EDR☆59Updated last year
- more conveniently Visual-Studio-BOF-template☆65Updated last year
- ☆26Updated last year
- Rust 重构的 sRDI☆14Updated 8 months ago
- A Simple PoC☆21Updated last year
- Beacon compiled using clang☆69Updated 2 years ago
- Silently Install Chrome Extension For Persistence☆51Updated 10 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆49Updated 2 years ago
- kill AV/EDR☆22Updated last year
- Binary Hollowing☆75Updated 8 months ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆49Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆43Updated last year
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆31Updated 2 years ago
- A BOF/COFF loader implemented in Go and CGO.☆22Updated last year
- 一个demo☆25Updated last year
- ☆31Updated last year
- 一个普通的BOF用来BypassUAC☆22Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆74Updated last year
- Fork & modify of Wireguard's Memmod☆32Updated last year
- Help red teams find opsec processes during engagements☆40Updated 5 months ago
- Code with Windows Hacker☆13Updated 2 years ago
- 自定义函数堆栈,从而绕过ETW检测,这个是完整版。☆14Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- Bypass EDR Create TaskServers☆37Updated 2 years ago
- command execute without 445 port☆52Updated 3 years ago
- Shellcode Reductio Entropy Tools☆67Updated last year
- ☆30Updated 2 years ago
- frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can …☆51Updated 2 years ago
- MSSQL CLR for pentest.☆54Updated last year