INotGreen / Xiebro-PluginsLinks
xiebroC2 plugin
☆54Updated 7 months ago
Alternatives and similar repositories for Xiebro-Plugins
Users that are interested in Xiebro-Plugins are comparing it to the libraries listed below
Sorting:
- FTP lnk调用pythonw程序,用于攻防钓鱼场景下免杀运行捆绑木马文件☆69Updated last year
- ASPX内存执行shellcode,绕过Windows Defender(AV/EDR)☆125Updated last year
- 主要用于隐藏进程真实路径,进程带windows真签名☆114Updated 11 months ago
- AutoGeaconC2: 一键读取Profile自动化生成geacon实现跨平台上线CobaltStrike☆143Updated last year
- Golang 写的免杀框架,通过系统调用等手法bypass AV/EDR☆23Updated last year
- Cobalt Strike plugin☆53Updated last year
- 本项目是基于Neo-reGeorg进行二次开发,对PHP木马添加了AES加密,修改了请求体和响应体特征☆90Updated last year
- 常用功能的DLL插件☆85Updated last week
- 绕过defender的完整项目☆34Updated last year
- 集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集☆86Updated last year
- 重构Beacon☆161Updated last year
- 项目用于实现水坑钓鱼收杆&CS上线提醒&自动权限维持☆56Updated last year
- Hidedump:a lsassdump tools that may bypass EDR☆50Updated last year
- ☆27Updated 3 years ago
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆84Updated 3 years ago
- 一键生成免杀木马☆27Updated 7 months ago
- rust 免杀,方法记录 - 偶尔更新☆87Updated last year
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Updated 2 years ago
- 一款简单的后渗透免杀加载器,Bypass AV/EDR☆82Updated 11 months ago
- EWSTool是一个针对EXCHANGE邮件服务器的后渗透 利用工具。使用ews接口,实现人员邮箱列表获取、搜索邮件、下载邮件等实用功能。☆61Updated 6 months ago
- Supernova 的中文版和扩展了一些加密方式(ROT, XOR, RC4, AES, CHACHA20, B64XOR, B64RC4, B64AES, B64CHACHA20)☆56Updated last year
- go实现的shellcode免杀加载器,实测时可过火绒,360。当前效果请自行评判。☆42Updated last year
- Zerologon exploit with restore DC password automatically☆140Updated last year
- 免杀捆绑器,过国内主流杀软。A Bundler bypass anti-virus☆58Updated 2 years ago
- 通过端口复用直接进行正向socks5代理(非防火墙分流)☆113Updated 9 months ago
- Zerologon自动化脚本☆96Updated 2 years ago
- 绕过杀软dumphash 离线读取☆147Updated 10 months ago
- mssqlproxy python3.5+ 并修复bug☆64Updated 2 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆81Updated 2 months ago
- 用于解密并加载shellcode,支持RC4和AES两种解密方法,并使用DInvoke来动态调用WinAPI函数,从而尝试绕过某些安全解决方案☆30Updated last year