Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode
☆201May 28, 2024Updated last year
Alternatives and similar repositories for DllMainHijacking
Users that are interested in DllMainHijacking are comparing it to the libraries listed below
Sorting:
- 寻找可利用的白文件☆556Aug 18, 2025Updated 6 months ago
- 一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.☆562May 30, 2025Updated 9 months ago
- Take a screenshot without injection for Cobalt Strike☆203Jun 7, 2023Updated 2 years ago
- 添加计划任务方法集合☆309Aug 6, 2023Updated 2 years ago
- 使用Visral Studio开发ShellCode☆235Oct 11, 2023Updated 2 years ago
- Pillager是一个适用于后渗透期间的信息收集工具☆1,268Sep 7, 2024Updated last year
- Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…☆1,294Jun 21, 2024Updated last year
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆181Aug 3, 2024Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆69Oct 10, 2025Updated 4 months ago
- 一款基于PE Patch技术的后渗透免杀工具,主要支持x64☆354Mar 5, 2025Updated last year
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆451Mar 11, 2024Updated last year
- 自动化找白文件,用于扫描 EXE 文件的导入表,列出导入的DLL文件,并筛选出非系统DLL,符合条件的文件将被复制到特定的 X64 或 X86 文件夹☆564Dec 14, 2025Updated 2 months ago
- A little tool to play with Windows security☆12Jan 21, 2026Updated last month
- 使用 rust 实现 CobaltStrike 的 beacon || Using Rust to implement CobaltStrike's Beacon☆200Jul 5, 2025Updated 8 months ago
- 针对PE文件的分离的攻防对抗工具,红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and…☆287Aug 20, 2024Updated last year
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆139Dec 26, 2023Updated 2 years ago
- 通过生成不同hash的ico并写入程序中,实现批量bypass360QVM☆259Aug 10, 2023Updated 2 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆92Jul 26, 2025Updated 7 months ago
- dll劫持、dll hijack、Bypass Antivirus、Red Team☆59Nov 9, 2024Updated last year
- 本项目是一个远程控制应用,使用 Golang 开发,允许用户通过 Web 界面远程控制和屏幕监控其他计算机。主要功能包括屏幕共享、鼠标和键盘控制以及键盘记录。☆456Jan 30, 2026Updated last month
- Automated Hosting Information Hunting Tool - Windows 主机信息自动化狩猎工具☆551Apr 15, 2025Updated 10 months ago
- Process injection alternative☆406Sep 6, 2024Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆462Sep 24, 2023Updated 2 years ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆434Dec 21, 2023Updated 2 years ago
- 一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。☆790Nov 15, 2024Updated last year
- 助力每一位RT队员,快速生成免杀木马☆829Apr 17, 2024Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Jul 23, 2023Updated 2 years ago
- 32 bit process inject shellcode to 32 bit process and 64 bit process☆35May 8, 2023Updated 2 years ago
- A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具,支持正向,反向socks5代理隧道的搭建,支持跨平台使用。☆466Mar 2, 2025Updated last year
- golang 实现的windows and linux 端口复用工具。☆309Jan 30, 2024Updated 2 years ago
- OrcaC2是一款基于Websocket加密通信的多功能C&C框架,使用Golang实现。☆676Dec 30, 2022Updated 3 years ago
- 渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理☆1,383Feb 28, 2025Updated last year
- An implementation of an indirect system call☆132Aug 25, 2023Updated 2 years ago
- 使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。☆556Jan 18, 2022Updated 4 years ago
- 一键提取exe的图标、嵌入图标、资源信息、版本信息、修改时间、数字签名,降低程序熵值☆431Dec 17, 2024Updated last year
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆675Aug 15, 2025Updated 6 months ago
- 集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集☆90May 18, 2024Updated last year
- 一个基于DNS隧道的简单C2☆61Jul 19, 2022Updated 3 years ago
- Mssql利用工具☆276Aug 7, 2023Updated 2 years ago