baiyies / ScreenshotBOFPlusLinks
Take a screenshot without injection for Cobalt Strike
☆202Updated 2 years ago
Alternatives and similar repositories for ScreenshotBOFPlus
Users that are interested in ScreenshotBOFPlus are comparing it to the libraries listed below
Sorting:
- Cobalt Strike BOF that Add a user to localgroup by samr☆132Updated 3 years ago
- Shellcode Reductio Entropy Tools☆74Updated 2 years ago
- Cobalt Strike BOF that Add an admin user☆78Updated 3 years ago
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆88Updated 2 years ago
- Zerologon exploit with restore DC password automatically☆141Updated last year
- If you only have hash, you can still operate exchange☆78Updated 4 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Updated 2 years ago
- more conveniently Visual-Studio-BOF-template☆74Updated 2 years ago
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Updated 2 years ago
- 主要用于隐藏进程真实路径,进程带windows真签名☆118Updated last year
- impacket编程手册☆103Updated 2 years ago
- 重构Beacon☆164Updated last year
- ☆56Updated 2 years ago
- ☆36Updated 2 years ago
- mssqlproxy python3.5+ 并修复bug☆65Updated 2 years ago
- ☆49Updated 2 years ago
- This is a third party agent for Havoc C2 written in golang.☆57Updated last year
- command execute without 445 port☆57Updated 3 years ago
- Cobalt Strike 二开项目☆185Updated 2 years ago
- Binary Hollowing☆90Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆62Updated 8 months ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆108Updated last year
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆75Updated 10 months ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆194Updated last year
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆88Updated 4 years ago
- ☆24Updated 3 years ago
- Supernova 的中文版和扩展了一些加密方式(ROT, XOR, RC4, AES, CHACHA20, B64XOR, B64RC4, B64AES, B64CHACHA20)☆56Updated last year
- Hidedump:a lsassdump tools that may bypass EDR☆50Updated last year
- ☆94Updated 3 years ago
- Callback Function Loader Implemented in Go☆140Updated last year