DarkDuckDudes / duckcafeLinks
鸭鸭咖啡馆主要项目
☆16Updated 2 years ago
Alternatives and similar repositories for duckcafe
Users that are interested in duckcafe are comparing it to the libraries listed below
Sorting:
- SysEye是一个window上的基于att&ck现代EDR设计思想的威胁响应工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆64Updated 2 years ago
- ☆91Updated 3 years ago
- ☆49Updated 3 years ago
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆163Updated 10 months ago
- more conveniently Visual-Studio-BOF-template☆65Updated last year
- 简单安排一下 autochk.sys 这个rootkit☆71Updated 2 years ago
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆149Updated 3 years ago
- ☆154Updated 11 months ago
- impacket编程手册☆104Updated last year
- Beacon compiled using clang☆69Updated 2 years ago
- Cobalt Strike 二开项目☆181Updated 2 years ago
- 模拟cobalt strike beacon上线包. Simulation cobalt strike beacon connection packet.☆78Updated 2 years ago
- A Blind EDR Project for Educational Purposes☆36Updated 4 months ago
- CrossC2通信协议API实现☆84Updated 3 years ago
- ☆37Updated 5 years ago
- bypass BeaconEye☆88Updated 3 years ago
- ☆64Updated 10 months ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆133Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- ☆100Updated 2 years ago
- ☆80Updated 6 years ago
- ☆89Updated 2 years ago
- Windows Defender VDM lua collections☆47Updated 2 years ago
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆133Updated 7 months ago
- CVE-2020-0787的简单回显☆32Updated 3 years ago
- Shellcode Reductio Entropy Tools☆67Updated last year
- 通过WindowsAPI获取用户凭证,并保存到文件中☆194Updated 11 months ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆49Updated last year
- power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes☆46Updated 3 years ago
- UAC_wenpon☆48Updated 3 years ago