将PE文件进行AES加密,然后从远程拉取加载内存中实现免杀
☆37Mar 1, 2023Updated 3 years ago
Alternatives and similar repositories for FilelessPELoader
Users that are interested in FilelessPELoader are comparing it to the libraries listed below
Sorting:
- ☆20Feb 27, 2022Updated 4 years ago
- C2Matrix Automation☆15Sep 10, 2023Updated 2 years ago
- A burp Extender to detect json, include fastjson,jackson,gson☆45Sep 22, 2022Updated 3 years ago
- Shellcode execution via x86 inline assembly based on MSVC syntax☆17Apr 26, 2023Updated 2 years ago
- fofa+xray vul scan golang☆10Sep 19, 2021Updated 4 years ago
- Weaponized VSCode Extensions☆15Feb 22, 2026Updated 3 weeks ago
- Alibaba Nacos存在默认token.secret.key,导致远程攻击者可以绕过密钥认证接管Nacos☆19Mar 17, 2023Updated 3 years ago
- 就是一个burp插件啦(ÒܫÓױ)☆17Sep 9, 2021Updated 4 years ago
- 一款dump hash工具配合后渗透的利用☆275Apr 21, 2023Updated 2 years ago
- A simple command line interface for webshells☆28Feb 2, 2023Updated 3 years ago
- golang rpc框架,支持数据加密传输☆13Feb 19, 2026Updated last month
- ☆15Aug 1, 2023Updated 2 years ago
- NTAPI hook bypass with (semi) legit stack trace☆19May 9, 2023Updated 2 years ago
- 远程shellcode加载&权限维持+小功能☆301May 7, 2024Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Jul 23, 2023Updated 2 years ago
- ☆13Feb 25, 2023Updated 3 years ago
- 利用图片隐写术来远程动态加载shellcode☆98Nov 14, 2022Updated 3 years ago
- CVE-2022-2185 poc☆13Jul 12, 2022Updated 3 years ago
- Attempts to suspend all known AV/EDRs processes on Windows using syscalls and the undocumented NtSuspendProcess API. Made with <3 for pen…☆13May 11, 2023Updated 2 years ago
- 一款基于go的windows信息收集工具,主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录☆290Jul 18, 2022Updated 3 years ago
- Microsoft Office Word Rce 复现(CVE-2022-30190)☆60May 31, 2022Updated 3 years ago
- 从零开始学免杀☆439Mar 30, 2022Updated 3 years ago
- CrackMapExec extension module/protocol support☆43Sep 12, 2023Updated 2 years ago
- Tool for pivoting over SMB pipes☆16Jul 20, 2019Updated 6 years ago
- log4j2内网扫描☆55Mar 16, 2022Updated 4 years ago
- 异或shellcode和ppid欺骗免杀☆14Mar 8, 2022Updated 4 years ago
- Gscan二开版☆12Apr 11, 2024Updated last year
- ☆16May 14, 2021Updated 4 years ago
- 一款基于Http.sys的利用工具☆195Nov 7, 2022Updated 3 years ago
- Evasive loader to bypass static detection☆60Jan 15, 2024Updated 2 years ago
- ☆55Sep 14, 2023Updated 2 years ago
- 使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。☆554Jan 18, 2022Updated 4 years ago
- 本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且�更新例如:…☆17May 22, 2022Updated 3 years ago
- This program is used to perform reflective DLL Injection to a remote process specified by the user.☆64Jul 11, 2023Updated 2 years ago
- Malware dev tricks. Syscalls part 1. Simple C example☆10Jun 8, 2023Updated 2 years ago
- Execute shellcode from a remote-hosted bin file using Winhttp.☆240Jun 22, 2023Updated 2 years ago
- Go implementation of the self-deletion of an running executable from disk☆113Jun 6, 2023Updated 2 years ago
- 泛微 eoffice10 前台 getshell☆59Aug 22, 2022Updated 3 years ago
- 添加图标以及版本信息,实现自动化bypass360QVM☆25Jul 16, 2025Updated 8 months ago