Neo-Maoku / expandTextSection
A tool that expands the size of the text section in a PE file without loss, supporting both 32-bit and 64-bit programs.
☆21Updated 4 months ago
Related projects: ⓘ
- Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode☆90Updated 3 months ago
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆56Updated 4 months ago
- 天问之路☆24Updated last week
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆117Updated 8 months ago
- XOR 加密 分离免杀☆63Updated 9 months ago
- vehsyscall:a syscall project that may bypass EDR☆41Updated 6 months ago
- 一款集成了DLL-Session0注入,APC注入,映射注入,线程劫持,函数踩踏,提权的工具(支持BIN加解密)☆69Updated last month
- ☆43Updated last month
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆82Updated last month
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆64Updated last year
- Binary Hollowing☆49Updated last week
- This is a third party agent for Havoc C2 written in golang.☆52Updated 8 months ago
- SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译,文件大小14KB,可免杀绕过360核晶防护与Defender☆28Updated last year
- Windows Persistence Toolsets(Windows 平台下权限维持集成工具)☆29Updated 2 months ago
- 使用Visral Studio开发ShellCode☆125Updated 11 months ago
- 白加黑的快速生成器(针对IAT类型)☆85Updated 2 years ago
- 重构Beacon☆105Updated last month
- 用于解密并加载shellcode,支持RC4和AES两种解密方法,并使用DInvoke来动态调用WinAPI函数,从而尝试绕过某些安全解决方案☆28Updated 11 months ago
- A Python-based VBScript Code Obfuscator☆27Updated 4 months ago
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆74Updated 2 years ago
- 无Windows API的新型恶意程序:自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究,A new type of malicious program without Windows API☆79Updated 4 months ago
- Next Generation C2 Framework☆78Updated this week
- 对shellcode进行xor、aes加解密来绕过杀毒软件的静态查杀☆21Updated last year
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆31Updated last week
- more conveniently Visual-Studio-BOF-template☆45Updated last year
- shellcode生成框架☆75Updated 2 months ago
- ☆85Updated 3 years ago
- 自动化找白文件,灰梭子好搭档!!!☆72Updated 5 months ago
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆54Updated 7 months ago
- Self Cleanup in post-ex job☆38Updated last week