HadesW / power-kill
power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
☆46Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for power-kill
- more conveniently Visual-Studio-BOF-template☆53Updated last year
- Beacon compiled using clang☆59Updated last year
- bypass BeaconEye☆88Updated 3 years ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆66Updated 2 years ago
- UAC_wenpon☆48Updated 2 years ago
- ☆89Updated 3 years ago
- ☆30Updated 4 years ago
- 白文件扫描器 非公开☆26Updated 3 years ago
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆59Updated 2 years ago
- ☆38Updated last year
- ReturnGate, just like HellsGate.☆65Updated 2 years ago
- Load shellcode via syscall☆47Updated 3 years ago
- Kill Protected Process Light Process (include av)☆54Updated last year
- bypass UAC even when configured to always notify user☆29Updated 3 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆33Updated 6 months ago
- ☆72Updated 3 years ago
- vehsyscall:a syscall project that may bypass EDR☆46Updated 8 months ago
- ☆86Updated 2 years ago
- Bypass EDR Create TaskServers☆34Updated last year
- ReflectiveDLL学习代码☆32Updated 4 years ago
- use aswArPot.sys to kill process☆64Updated 2 years ago
- 看起来叫BabyBypass,实际啥都会记一些☆16Updated last year
- 过360拦截加载无驱动签名☆59Updated 3 years ago
- ☆46Updated 3 years ago
- 自用的shellcode生成框架☆29Updated last year
- ☆27Updated last year
- geacon for apt profile☆21Updated 2 years ago
- ☆36Updated 4 years ago
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll☆41Updated 2 years ago