Alternatives and similar repositories for SharkOne

Users that are interested in SharkOne are comparing it to the libraries listed below

• evilashz / PigScheduleTask
  添加计划任务方法集合
  ☆303Updated 2 years ago
• Rvn0xsy / SchtaskCreator
  远程创建任务计划工具
  ☆189Updated 3 years ago
• M0nster3 / RpcsDemo
  关于RPC一些绕EDR的tips
  ☆193Updated 2 years ago
• qi4L / CallbackLoader-go
  Callback Function Loader Implemented in Go
  ☆141Updated last year
• Rvn0xsy / j2osWin
  ☆155Updated last year
• 1y0n / AVKiller
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆137Updated last year
• M0nster3 / Beacon
  重构Beacon
  ☆161Updated last year
• 0x727 / UserRegEnum_0x727
  域内普通域用户权限查找域内所有计算机上登录的用户
  ☆151Updated 2 years ago
• wangfly-me / SysHttpHookSleep
  集合多种方式的ShellcodeLoader
  ☆127Updated 2 years ago
• crisprss / BypassUserAdd
  通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
  ☆342Updated 3 years ago
• rixoye / BypassAvTool
  源码免杀辅助工具
  ☆95Updated 10 months ago
• yanghaoi / ridhijack
  通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).
  ☆84Updated 3 years ago
• INotGreen / Bypass-AMSI
  ☆56Updated 2 years ago
• G73st / BypassAV
  c++ shellcode loader
  ☆86Updated 3 years ago
• baiyies / ScreenshotBOFPlus
  Take a screenshot without injection for Cobalt Strike
  ☆200Updated 2 years ago
• 9bie / iatHijackGenerate
  白加黑的快速生成器（针对IAT类型）
  ☆105Updated 3 years ago
• baimao-box / Self-Defective-Program
  无Windows API的新型恶意程序：自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究，A new type of malicious program without Windows API
  ☆87Updated 6 months ago
• 0x727 / CloudSandbox
  收集云沙箱上线C2的ip，如微X、奇XX、3X0、virustX等
  ☆126Updated last year
• atomxw / cobaltstrike4.5_cdf
  cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等
  ☆46Updated 3 years ago
• qi4L / Unhooker-go
  EDR绕过demo
  ☆292Updated last year
• Ciyfly / microwaveo
  将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密
  ☆368Updated 3 years ago
• mabangde / SharpGetUserLoginIPRPC
  提取域控日志，支持远程提取
  ☆168Updated 6 months ago
• qigpig / Ghosting-BOF
  主要用于隐藏进程真实路径，进程带windows真签名
  ☆114Updated 11 months ago
• lele8 / SharpUserIP
  获取服务器或域控登录日志
  ☆276Updated 2 years ago
• clownfive / CppDevShellcode
  使用Visral Studio开发ShellCode
  ☆218Updated last year
• chroblert / JSigThief
  Golang 版SigThief
  ☆85Updated 3 years ago
• dragoneeg / bDLL
  自动化dll劫持测试工具。Automated dll hijacking testing tool
  ☆89Updated 3 years ago
• fdx-xdf / Rust_Beacon
  使用 rust 实现 CobaltStrike 的 beacon || Using Rust to implement CobaltStrike's Beacon
  ☆181Updated 3 months ago
• seventeenman / noELF
  Linux下用于远程加载可执行文件以达到内存加载的目的
  ☆203Updated 2 years ago
• yj94 / Anti-Sandbox
  ☆69Updated last year