Alternatives and similar repositories for Check-SandBox

Users that are interested in Check-SandBox are comparing it to the libraries listed below

• 1y0n / AVKiller
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆137Updated last year
• qigpig / Ghosting-BOF
  主要用于隐藏进程真实路径，进程带windows真签名
  ☆114Updated last year
• ImCoriander / Go-Packer-Loaders
  快速Go建你的免杀项目
  ☆25Updated last year
• yanghaoi / ridhijack
  通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).
  ☆84Updated 3 years ago
• d3ckx1 / CS-Auto-migrate
  ☆27Updated 3 years ago
• CBLabresearch / old-bypass-webBuild
  一个2020年练手的基于gin框架搞的在线免杀平台，支持后台管理，邀请码注册等
  ☆38Updated last year
• xf555er / SharpShellcodeLoader_Rc4Aes
  用于解密并加载shellcode，支持RC4和AES两种解密方法，并使用DInvoke来动态调用WinAPI函数，从而尝试绕过某些安全解决方案
  ☆30Updated 2 years ago
• ekkoo-z / LuckyDump
  bypass edr杀软的dumplsass工具
  ☆21Updated 6 months ago
• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆69Updated 2 years ago
• yutianqaq / x1Ldr
  XOR 加密 分离免杀
  ☆67Updated last year
• kaliworld / easybypassdemo
  ☆46Updated 10 months ago
• yutianqaq / EntropyCalc_Go
  File entropy calculator - Golang
  ☆29Updated last year
• determinasc / SysWhispers3WinHttp
  SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译，文件大小14KB，可免杀绕过360核晶防护与Defender
  ☆32Updated 2 years ago
• m7rick / GoDhijacking
  Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…
  ☆74Updated 7 months ago
• miunasu / NTR_loader
  Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术，不使用API进行主线程劫持，不使用PEB…
  ☆81Updated 2 months ago
• Laster-dev / Patch_All-in-one
  白文件patch
  ☆21Updated last year
• Qi4l-Labs / Fusion
  A cross platform C2/post-exploitation framework
  ☆49Updated 5 months ago
• youcannotseemeagain / ele
  常用功能的DLL插件
  ☆85Updated 3 weeks ago
• ImCoriander / Bypass_Defender
  绕过defender的完整项目
  ☆34Updated last year
• yinsel / ShellcodeDev
  基于个人习惯使用C/C++的shellcode开发项目模板
  ☆48Updated last year
• StarfireLab / EFSRPCrpc
  利用EFSRPC协议批量探测出网
  ☆65Updated 2 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• 0neAtSec / SharpDomainInfo
  根据攻防以及域信息收集经验dump快而有用的域信息
  ☆102Updated 2 years ago
• smallvoter / 360QVM_bypass
  批量生成修改的图标+数字签名+详细说明后的PE文件
  ☆17Updated last year
• testxxxzzz / Bundler-bypass
  免杀捆绑器，过国内主流杀软。A Bundler bypass anti-virus
  ☆58Updated 2 years ago
• Rvn0xsy / Havoc-Agent-Handler
  This is a third party agent for Havoc C2 written in golang.
  ☆58Updated last year
• coleak2021 / hidedump
  Hidedump:a lsassdump tools that may bypass EDR
  ☆50Updated last year
• 0x727 / CloudSandbox
  收集云沙箱上线C2的ip，如微X、奇XX、3X0、virustX等
  ☆126Updated last year
• hhuang00 / go-bypass-loader
  go实现的shellcode免杀加载器，实测时可过火绒，360。当前效果请自行评判。
  ☆42Updated last year
• StarfireLab / AutoZerologon
  Zerologon自动化脚本
  ☆96Updated 2 years ago