baiyies / ScreenshotBOFPlusLinks
Take a screenshot without injection for Cobalt Strike
☆197Updated 2 years ago
Alternatives and similar repositories for ScreenshotBOFPlus
Users that are interested in ScreenshotBOFPlus are comparing it to the libraries listed below
Sorting:
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- Shellcode Reductio Entropy Tools☆71Updated last year
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆88Updated 2 years ago
- Cobalt Strike BOF that Add an admin user☆77Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆77Updated 2 years ago
- Zerologon exploit with restore DC password automatically☆138Updated last year
- If you only have hash, you can still operate exchange☆75Updated 3 years ago
- more conveniently Visual-Studio-BOF-template☆67Updated last year
- 域内普通域用户权限查找域内所有计算机上登录的用户☆150Updated 2 years ago
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆72Updated 5 months ago
- ☆35Updated 2 years ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆194Updated last year
- Cobalt Strike 二开项目☆184Updated 2 years ago
- Binary Hollowing☆78Updated 10 months ago
- impacket编程手册☆105Updated last year
- 重构Beacon☆160Updated 11 months ago
- powershell免杀,Invoke-Obfuscation-Bypass分析和修改☆16Updated 2 years ago
- 主要用于隐藏进程真实路径,进程带windows真签名☆113Updated 9 months ago
- ☆49Updated 2 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆89Updated last year
- ☆24Updated 2 years ago
- This is a third party agent for Havoc C2 written in golang.☆58Updated last year
- command execute without 445 port☆52Updated 3 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆70Updated last week
- ☆55Updated last year
- Supernova 的中文版和扩展了一些加密方式(ROT, XOR, RC4, AES, CHACHA20, B64XOR, B64RC4, B64AES, B64CHACHA20)☆53Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆62Updated 3 months ago
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆79Updated 3 years ago
- ☆31Updated last year
- mssqlproxy python3.5+ 并修复bug☆63Updated 2 years ago