H4K6 / FilelessPELoader
将PE文件进行AES加密,然后从远程拉取加载内存中实现免杀
☆34Updated last year
Related projects ⓘ
Alternatives and complementary repositories for FilelessPELoader
- Hidedump:a lsassdump tools that may bypass EDR☆36Updated 5 months ago
- command execute without 445 port☆51Updated 2 years ago
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆59Updated 2 years ago
- CrackMapExec extension module/protocol support☆41Updated last year
- Invoke-Obfuscation-Bypass + PS2EXE 过主流杀软☆52Updated 3 years ago
- ☆49Updated last year
- ASPX ShellCode Loader☆46Updated 9 months ago
- more conveniently Visual-Studio-BOF-template☆53Updated last year
- kill windows log☆45Updated 7 months ago
- Shellcode Reductio Entropy Tools☆63Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆67Updated last year
- CobaltStrike Malleable Profile☆23Updated 2 years ago
- ☆29Updated last year
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆32Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆66Updated 2 years ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆30Updated 2 years ago
- ☆22Updated last year
- Bypass EDR Create TaskServers☆34Updated last year
- Silently Install Chrome Extension For Persistence☆43Updated 4 months ago
- shellcode loader by c++,免杀,bypass,☆13Updated 2 years ago
- cobaltstrike免杀插件☆21Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆40Updated last year
- 在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。☆32Updated 2 years ago
- MSSQL CLR for pentest.☆53Updated last year
- ☆15Updated last year
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆59Updated 6 months ago
- ☆101Updated 2 years ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆123Updated last year
- ☆21Updated 11 months ago