Yihsiwei / admin2system
父进程欺骗,另类administrator提权到system
☆30Updated 2 years ago
Related projects: ⓘ
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆82Updated last month
- 通过ACPI检测沙箱☆42Updated last year
- ☆11Updated this week
- ☆13Updated this week
- 过木马免杀制作器☆54Updated 11 months ago
- ☆63Updated this week
- 简单安排一下 autochk.sys 这个rootkit☆64Updated last year
- ☆85Updated 3 years ago
- Windows 平台下的UAC(User Account Contro) 绕过工具。☆51Updated 2 months ago
- ☆43Updated last month
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆117Updated 8 months ago
- A tool that expands the size of the text section in a PE file without loss, supporting both 32-bit and 64-bit programs.☆21Updated 4 months ago
- 基于csharp实现的免杀shellcode加载器☆32Updated 3 years ago
- 利用inline hook免杀绕过360,vt爆3个☆64Updated 2 years ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆64Updated last year
- AV Bypass Shellcode Loader☆17Updated 2 years ago
- 白加黑的快速生成器(针对IAT类型)☆85Updated 2 years ago
- 过360拦截加载无驱动签名☆58Updated 2 years ago
- XOR 加密 分离免杀☆63Updated 9 months ago
- ReflectiveDLL☆153Updated 4 years ago
- ☆21Updated this week
- Remote Download and Memory Execute for shellcode framework☆87Updated last year
- windows黑客编程基础(C\C++)☆42Updated 5 years ago
- vehsyscall:a syscall project that may bypass EDR☆41Updated 6 months ago
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆54Updated 7 months ago
- ReturnGate, just like HellsGate.☆65Updated 2 years ago
- 该漏洞存在于 NtQueryInformationToken 函数中,特别是在处理AuthzBasepCopyoutInternalSecurityAttributes 函数时,该漏洞源于内核在操作对象时对锁定机制的不当管理,这一失误可能导致恶意实体意外提升权限。☆29Updated 2 months ago
- 自用的shellcode生成框架☆29Updated last year
- CobaltStrike Reflective Dll Source☆19Updated 2 years ago
- ☆14Updated this week