Neo-Maoku / expandTextSection

Related projects: ⓘ

• Neo-Maoku / DllMainHijacking
  Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode
  ☆90Updated 3 months ago
• m7rick / GoDhijacking
  Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…
  ☆56Updated 4 months ago
• yj94 / Yj_learning
  天问之路
  ☆24Updated last week
• 1y0n / AVKiller
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆117Updated 8 months ago
• yutianqaq / x1Ldr
  XOR 加密 分离免杀
  ☆63Updated 9 months ago
• coleak2021 / vehsyscall
  vehsyscall:a syscall project that may bypass EDR
  ☆41Updated 6 months ago
• juruo-wankli / InjectTools
  一款集成了DLL-Session0注入，APC注入，映射注入，线程劫持，函数踩踏，提权的工具(支持BIN加解密)
  ☆69Updated last month
• yj94 / Anti-Sandbox
  ☆43Updated last month
• huoji120 / white_patch_detect
  通杀检测基于白文件patch黑代码的免杀技术的后门
  ☆82Updated last month
• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆64Updated last year
• timwhitez / BinHol
  Binary Hollowing
  ☆49Updated last week
• Rvn0xsy / Havoc-Agent-Handler
  This is a third party agent for Havoc C2 written in golang.
  ☆52Updated 8 months ago
• determinasc / SysWhispers3WinHttp
  SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译，文件大小14KB，可免杀绕过360核晶防护与Defender
  ☆28Updated last year
• Cherno-x / everHold
  Windows Persistence Toolsets（Windows 平台下权限维持集成工具）
  ☆29Updated 2 months ago
• clownfive / CppDevShellcode
  使用Visral Studio开发ShellCode
  ☆125Updated 11 months ago
• 9bie / iatHijackGenerate
  白加黑的快速生成器（针对IAT类型）
  ☆85Updated 2 years ago
• M0nster3 / Beacon
  重构Beacon
  ☆105Updated last month
• xf555er / SharpShellcodeLoader_Rc4Aes
  用于解密并加载shellcode，支持RC4和AES两种解密方法，并使用DInvoke来动态调用WinAPI函数，从而尝试绕过某些安全解决方案
  ☆28Updated 11 months ago
• bobby-tablez / VBScrambler
  A Python-based VBScript Code Obfuscator
  ☆27Updated 4 months ago
• yanghaoi / ridhijack
  通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).
  ☆74Updated 2 years ago
• baimao-box / Self-Defective-Program
  无Windows API的新型恶意程序：自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究，A new type of malicious program without Windows API
  ☆79Updated 4 months ago
• chainreactors / malice-network
  Next Generation C2 Framework
  ☆78Updated this week
• xf555er / ShellcodeEncryption
  对shellcode进行xor、aes加解密来绕过杀毒软件的静态查杀
  ☆21Updated last year
• CBLabresearch / old-bypass-webBuild
  一个2020年练手的基于gin框架搞的在线免杀平台，支持后台管理，邀请码注册等
  ☆31Updated last week
• evilashz / Visual-Studio-BOF-template
  more conveniently Visual-Studio-BOF-template
  ☆45Updated last year
• jseclab / obj2shellcode
  shellcode生成框架
  ☆75Updated 2 months ago
• Ryze-T / EdrKiller
  ☆85Updated 3 years ago
• ImCoriander / ZeroEye
  自动化找白文件，灰梭子好搭档！！！
  ☆72Updated 5 months ago
• Z3ratu1 / HackBrowserDataManual
  Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring
  ☆54Updated 7 months ago
• CBLabresearch / PhantomExecution
  Self Cleanup in post-ex job
  ☆38Updated last week