Alternatives and similar repositories for expandTextSection:

Users that are interested in expandTextSection are comparing it to the libraries listed below

• Neo-Maoku / Shellcode_Generator
  IDA Python script for generating Windows x86 shellcode with one click
  ☆37Updated last year
• aeverj / RTDllHijack
  dll劫持、dll hijack、Bypass Antivirus、Red Team
  ☆41Updated 4 months ago
• coleak2021 / PE64shell
  A packer which adds encrypted shell to protect your PE file
  ☆20Updated 4 months ago
• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆66Updated 2 years ago
• coleak2021 / vehsyscall
  vehsyscall:a syscall project that may bypass EDR
  ☆54Updated last year
• k3lpi3b4nsh33 / BlindEdr
  A Blind EDR Project for Educational Purposes
  ☆28Updated 2 months ago
• yinsel / ShellcodeDev
  基于个人习惯使用C/C++的shellcode开发项目模板
  ☆33Updated 7 months ago
• m7rick / GoDhijacking
  Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…
  ☆64Updated last month
• determinasc / SysWhispers3WinHttp
  SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译，文件大小14KB，可免杀绕过360核晶防护与Defender
  ☆31Updated 2 years ago
• yj94 / Anti-Sandbox
  ☆58Updated 8 months ago
• huoji120 / white_patch_detect
  通杀检测基于白文件patch黑代码的免杀技术的后门
  ☆151Updated 8 months ago
• evilashz / Visual-Studio-BOF-template
  more conveniently Visual-Studio-BOF-template
  ☆62Updated last year
• 1y0n / AVKiller
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆127Updated last year
• clownfive / CustomStack
  自定义函数堆栈，从而绕过ETW检测，这个是完整版。
  ☆13Updated 11 months ago
• jseclab / wechat_public
  hey！这里用来存放公众号中使用的代码
  ☆8Updated 9 months ago
• yutianqaq / x1Ldr
  XOR 加密 分离免杀
  ☆65Updated last year
• howmp / donut_ollvm
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆43Updated 10 months ago
• M0nster3 / ITaskServers
  Bypass EDR Create TaskServers
  ☆36Updated 2 years ago
• Laster-dev / Patch_All-in-one
  白文件patch
  ☆17Updated 7 months ago
• badboycxcc / Beacon
  重构Beacon
  ☆15Updated 7 months ago
• timwhitez / BinHol
  Binary Hollowing
  ☆72Updated 6 months ago
• seventeenman / SelfDel-BOF
  Delete file regardless of whether the handle is used via SetFileInformationByHandle
  ☆42Updated last year
• huoji120 / numen
  简单安排一下 autochk.sys 这个rootkit
  ☆71Updated 2 years ago
• huoji120 / APT_Step_Bear_Inject
  复现《EDR的梦魇：Storm-0978使用新型内核注入技术“Step Bear”》
  ☆128Updated 5 months ago
• BambiZombie / DcRAT-GAI
  个人学习使用，二开DcRAT，主要是增加了功能性插件
  ☆16Updated last year
• 9bie / iatHijackGenerate
  白加黑的快速生成器（针对IAT类型）
  ☆95Updated 2 years ago
• xf555er / Shellcode_SeparationLoad
  通过文件加载和远程URL加载方式实现Shellcode分离加载
  ☆31Updated last year
• qigpig / Ghosting-BOF
  主要用于隐藏进程真实路径，进程带windows真签名
  ☆101Updated 5 months ago
• BambiZombie / StagerDemo
  一个demo
  ☆23Updated last year
• Haunted-Banshee / Shellcode-Hastur
  Shellcode Reductio Entropy Tools
  ☆65Updated last year