Alternatives and similar repositories for Check-SandBox

Users that are interested in Check-SandBox are comparing it to the libraries listed below

• qigpig / Ghosting-BOF
  主要用于隐藏进程真实路径，进程带windows真签名
  ☆119Updated last year
• 1y0n / AVKiller
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆138Updated 2 years ago
• yanghaoi / ridhijack
  通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).
  ☆88Updated 4 years ago
• ImCoriander / Go-Packer-Loaders
  快速Go建你的免杀项目
  ☆26Updated last year
• m7rick / GoDhijacking
  Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…
  ☆75Updated 11 months ago
• coleak2021 / hidedump
  Hidedump:a lsassdump tools that may bypass EDR
  ☆51Updated last year
• miunasu / NTR_loader
  Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术，不使用API进行主线程劫持，不使用PEB…
  ☆92Updated 6 months ago
• youcannotseemeagain / ele
  常用功能的DLL插件
  ☆86Updated 4 months ago
• yinsel / ShellcodeDev
  基于个人习惯使用C/C++的shellcode开发项目模板
  ☆50Updated last year
• kaliworld / easybypassdemo
  ☆47Updated last year
• yutianqaq / x1Ldr
  XOR 加密 分离免杀
  ☆67Updated 2 years ago
• JDArmy / PwdCollection
  密码收集
  ☆58Updated 3 years ago
• 0neAtSec / SharpDomainInfo
  根据攻防以及域信息收集经验dump快而有用的域信息
  ☆103Updated 2 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• StarfireLab / AutoZerologon
  Zerologon自动化脚本
  ☆96Updated 2 years ago
• Qi4l-Labs / Fusion
  A cross platform C2/post-exploitation framework
  ☆55Updated 3 months ago
• ImCoriander / Bypass_Defender
  绕过defender的完整项目
  ☆37Updated last year
• d3ckx1 / CS-Auto-migrate
  ☆27Updated 3 years ago
• Laster-dev / Patch_All-in-one
  白文件patch
  ☆26Updated last year
• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆78Updated 2 years ago
• ASkyeye / ImpulsiveDLLHijack
  C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…
  ☆17Updated 4 years ago
• StarfireLab / EFSRPCrpc
  利用EFSRPC协议批量探测出网
  ☆67Updated 2 years ago
• Amulab / advul
  ad vulnerability scanner
  ☆74Updated 2 years ago
• determinasc / SysWhispers3WinHttp
  SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译，文件大小14KB，可免杀绕过360核晶防护与Defender
  ☆32Updated 2 years ago
• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆73Updated 3 years ago
• yutianqaq / EntropyCalc_Go
  File entropy calculator - Golang
  ☆30Updated 2 years ago
• testxxxzzz / Bundler-bypass
  免杀捆绑器，过国内主流杀软。A Bundler bypass anti-virus
  ☆60Updated 3 years ago
• hhuang00 / go-bypass-loader
  go实现的shellcode免杀加载器，实测时可过火绒，360。当前效果请自行评判。
  ☆44Updated last year
• djhons / mssqlproxy
  mssqlproxy python3.5+ 并修复bug
  ☆65Updated 2 years ago
• xiecat / AlternativeShellcodeExec-Go
  ☆36Updated 2 years ago