INotGreen / Nopowershell
Call the CLR interface from memory to load powershell, process-less powershell
☆12Updated last year
Alternatives and similar repositories for Nopowershell:
Users that are interested in Nopowershell are comparing it to the libraries listed below
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆31Updated 2 years ago
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- ☆31Updated last year
- ☆40Updated last year
- ☆26Updated last year
- Enable RDP and set firewall by Windows API.☆19Updated 3 years ago
- Re-implement cmd.exe using windows api☆49Updated 2 years ago
- ☆15Updated last year
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆57Updated 3 years ago
- 异或shellcode和ppid欺骗免杀☆14Updated 3 years ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆66Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆43Updated last year
- ☆19Updated 2 years ago
- geacon for apt profile☆21Updated 2 years ago
- ☆22Updated last year
- js加载cs的shellcode,实现免杀☆9Updated 4 years ago
- vehsyscall:a syscall project that may bypass EDR☆56Updated last year
- 将PE文件进行AES加密,然后从远程拉取加载内存中实现免杀☆36Updated 2 years ago
- CVE-2020-1472 C++☆82Updated 2 years ago
- command execute without 445 port☆52Updated 3 years ago
- Invoke-Obfuscation-Bypass + PS2EXE 过主流杀软☆53Updated 3 years ago
- 重构Beacon☆15Updated 8 months ago
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆32Updated 2 years ago
- 白文件扫描器 非公开☆28Updated 3 years ago
- cmd2shellcode☆79Updated 3 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆44Updated 2 years ago
- Use COM Component Bypass UAC,Dll Version☆34Updated 4 years ago
- cobaltstrike免杀插件☆22Updated 2 years ago
- UAC_wenpon☆48Updated 3 years ago
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago