Gality369 / Process-Injection
汇总了目前可以找到的所有的进程注入的方式,完成了x86/x64下的测试,不断更新中
☆268Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for Process-Injection
- 有需求做攻防对抗��,买本书学习下常见技术,例子敲一敲☆226Updated 3 years ago
- 绕3环的shellcode免杀框架☆561Updated 3 years ago
- 使用Visral Studio开发ShellCode☆160Updated last year
- Windows对抗沙箱和虚拟机的方法总结☆386Updated 4 years ago
- EXE转ShellCode工具☆170Updated 2 years ago
- 一键生成免杀木马的 shellcode 免杀框架☆155Updated 4 months ago
- c++免杀绕过360,vt爆4个☆84Updated 2 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆272Updated 3 years ago
- 远程shellcode加载&权限维持+小功能☆291Updated 6 months ago
- 针对PE文件的分离的攻防对抗工具,红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and…☆228Updated 3 months ago
- A socksv5 proxy tool Written by CLang. 一款纯C实现的基于socks5协议的轻量内网穿透工具,支持ew的全部数据转发方式,支持跨平台使用☆367Updated 4 months ago
- 免杀与恶意软件开发☆202Updated 5 months ago
- 利用白名单文件 cdb.exe 执行 shellcode☆212Updated 2 years ago
- 寻找可利用的白文件☆458Updated 6 months ago
- EDR绕过demo☆286Updated 10 months ago
- 重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.☆273Updated 2 years ago
- Some demos to bypass EDRs or AVs by 78itsT3@m☆345Updated 2 years ago
- dump lsass进程工具☆545Updated last year
- Linux下用于远程加载可执行文件以达到内存加载的目的☆198Updated 2 years ago
- 通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化☆331Updated 2 years ago
- 将dll exe 等转成shellcode 最后输出exe �可定制加载器模板 支持白文件的捆绑 shellcode 加密☆359Updated 2 years ago
- This is my FirstRepository☆309Updated last year
- 关于RPC一些绕EDR的tips☆158Updated last year
- 滴水三期课后习题答案☆100Updated 9 months ago
- Generate DLL Hijacking Payload in batches.☆110Updated 3 months ago
- 利用图片隐写术来远程动态加载shellcode��☆96Updated 2 years ago
- Cobalt Strike 二开项目☆177Updated last year
- Loading BOF & ShellCode without executable permission memory.☆349Updated 3 weeks ago