INotGreen / Nopowershell
Call the CLR interface from memory to load powershell, process-less powershell
☆12Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Nopowershell
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆30Updated 2 years ago
- Bypass EDR Create TaskServers☆34Updated last year
- js加载cs的shellcode,实现免杀☆9Updated 4 years ago
- Enable RDP and set firewall by Windows API.☆19Updated 2 years ago
- Invoke-Obfuscation-Bypass + PS2EXE 过主流杀软☆52Updated 3 years ago
- ☆29Updated last year
- ☆38Updated last year
- ☆27Updated last year
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆59Updated 2 years ago
- geacon for apt profile☆21Updated 2 years ago
- ☆19Updated 2 years ago
- 异或shellcode和ppid欺骗免杀☆14Updated 2 years ago
- shellcode loader by c++,免杀,bypass,☆13Updated 2 years ago
- ☆15Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆66Updated 2 years ago
- Re-implement cmd.exe using windows api☆49Updated last year
- Offensive Code☆20Updated last year
- 白文件扫描器 非公开☆26Updated 3 years ago
- CrackMapExec extension module/protocol support☆41Updated last year
- ☆21Updated 11 months ago
- CVE-2020-1472 C++☆83Updated 2 years ago
- ReflectiveDLL学习代码☆32Updated 4 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆38Updated last year
- CobaltStrike Reflective Dll Source☆19Updated 2 years ago
- desktop screenshot☆29Updated last year
- more conveniently Visual-Studio-BOF-template☆53Updated last year
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆32Updated last year
- dump lsass☆36Updated 2 years ago
- 批量检查远程桌面密码或ntlm是否正确☆40Updated 3 years ago