c1y2m3 / SimpleShellcodeLinks
利用图片隐写术来远程动态加载shellcode
☆96Updated 2 years ago
Alternatives and similar repositories for SimpleShellcode
Users that are interested in SimpleShellcode are comparing it to the libraries listed below
Sorting:
- Remote Download and Memory Execute for shellcode framework☆92Updated 2 years ago
- 过360拦截加载无驱动签名☆60Updated 3 years ago
- ☆81Updated 6 years ago
- ☆155Updated last year
- [windows]pe -> shellcode -> shellcodeLoader -> (pe2shellcode go on?)☆77Updated 3 years ago
- C++枚举磁盘列表、遍历指定盘搜索特定类型文件/微信导出密钥,文件回传等功能☆153Updated 2 years ago
- 一个加壳工具☆63Updated 6 years ago
- Linux下用于远程加载可执行文件以达到内存加载的目的☆202Updated 2 years ago
- 远程创建任务计划工具☆188Updated 3 years ago
- SysEye是一个window上的基于att&ck现代EDR设计思想的威胁响应工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆63Updated 2 years ago
- 利用inline hook免杀绕过360,vt爆3个☆63Updated 2 years ago
- 白加黑的快速生成器(针对IAT类型)☆102Updated 2 years ago
- ☆13Updated 5 years ago
- CVE-2020-0787的简单回显☆31Updated 3 years ago
- Windows API Open 3389☆43Updated 5 years ago
- windows黑客编程基础(C\C++)☆43Updated 6 years ago
- ☆91Updated 4 years ago
- 记录一下我学习的Win32CPP☆55Updated 3 years ago
- 模仿操作系统,加载pe文件到内存中☆76Updated 6 years ago
- 一款基于Http.sys的利用工具☆191Updated 2 years ago
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆149Updated 3 years ago
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆148Updated 3 years ago
- CobaltStrikeDetect☆50Updated 3 weeks ago
- Cobalt Strike 二开项目☆184Updated 2 years ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆194Updated last year
- SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译,文件大小14KB,可免杀绕过360核晶防护与Defender☆32Updated 2 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆88Updated 3 years ago
- TeamView Get PassWord☆75Updated 3 years ago
- Windows访问令牌查看及利用工具☆71Updated 4 years ago
- ☆68Updated 3 years ago