Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode
☆203May 28, 2024Updated last year
Alternatives and similar repositories for DllMainHijacking
Users that are interested in DllMainHijacking are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 寻找可利用的白文件☆559Aug 18, 2025Updated 7 months ago
- 一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.☆564May 30, 2025Updated 9 months ago
- Take a screenshot without injection for Cobalt Strike☆203Jun 7, 2023Updated 2 years ago
- 添加计划任务方法集合☆310Aug 6, 2023Updated 2 years ago
- 使用Visral Studio开发ShellCode☆239Oct 11, 2023Updated 2 years ago
- Pillager是一个适用于后渗透期间的信息收集工具☆1,271Sep 7, 2024Updated last year
- 自动化找白文件,用于扫描 EXE 文件的导入表,列出导入的DLL文件,并筛选出非系统DLL,符合条件的文件将被复制到特定的 X64 或 X86 文件夹☆565Dec 14, 2025Updated 3 months ago
- 一款基于PE Patch技术的后渗透免杀工具,主要支持x64☆355Mar 5, 2025Updated last year
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆181Aug 3, 2024Updated last year
- Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…☆1,296Jun 21, 2024Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆71Mar 16, 2026Updated last week
- 使用 rust 实现 CobaltStrike 的 beacon || Using Rust to implement CobaltStrike's Beacon☆201Jul 5, 2025Updated 8 months ago
- A little tool to play with Windows security☆12Jan 21, 2026Updated 2 months ago
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆451Mar 11, 2024Updated 2 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆91Jul 26, 2025Updated 7 months ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆138Dec 26, 2023Updated 2 years ago
- 通过生成不同hash的ico并写入程序中,实现批量bypass360QVM☆259Aug 10, 2023Updated 2 years ago
- A Simple PoC☆22May 24, 2024Updated last year
- golang 实现的windows and linux 端口复用工具。☆310Jan 30, 2024Updated 2 years ago
- 针对PE文件的分离的攻防对抗工具,红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and…☆286Aug 20, 2024Updated last year
- Simulate per-process disconnection in red team environments☆113Jun 6, 2025Updated 9 months ago
- 收集云沙箱上线C2的ip,如微X、奇XX、3X0、virustX等☆125Oct 23, 2023Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Jul 23, 2023Updated 2 years ago
- 本项目是一个远程控制应用,使用 Golang 开发,允许用户通过 Web 界面远程控制和屏幕监控其他计算机。主要功能包括屏幕共享、鼠标和键盘控制以及键盘记录。☆460Jan 30, 2026Updated last month
- 在cobaltstrike中使用的bof工具集,收集整理验证好用的bof。☆17Sep 30, 2021Updated 4 years ago
- A simple Sleepmask BOF example☆171Nov 24, 2025Updated 4 months ago
- Automated Hosting Information Hunting Tool - Windows 主机信息自动化狩猎工具☆550Apr 15, 2025Updated 11 months ago
- 集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集☆89May 18, 2024Updated last year
- Hidedump:a lsassdump tools that may bypass EDR☆51May 23, 2024Updated last year
- 一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。☆792Nov 15, 2024Updated last year
- Process injection alternative☆407Sep 6, 2024Updated last year
- A beacon object file implementation of PoolParty Process Injection Technique.☆438Dec 21, 2023Updated 2 years ago
- dll劫持、dll hijack、Bypass Antivirus、Red Team☆60Nov 9, 2024Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆464Sep 24, 2023Updated 2 years ago
- 白加黑的快速生成器(针对IAT类型)☆115Sep 19, 2022Updated 3 years ago
- A tool that expands the size of the text section in a PE file without loss, supporting both 32-bit and 64-bit programs.☆41May 9, 2024Updated last year
- 基于个人习惯使用C/C++的shellcode开发项目模板☆50Aug 20, 2024Updated last year
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆161Oct 27, 2024Updated last year
- 使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。☆554Jan 18, 2022Updated 4 years ago