c1y2m3 / SimpleShellcode
利用图片隐写术来远程动态加载shellcode
☆95Updated 2 years ago
Alternatives and similar repositories for SimpleShellcode:
Users that are interested in SimpleShellcode are comparing it to the libraries listed below
- 利用inline hook免杀绕过360,vt爆3个��☆63Updated 2 years ago
- Remote Download and Memory Execute for shellcode framework☆91Updated 2 years ago
- ☆154Updated 9 months ago
- 关于RPC一些绕EDR的tips☆166Updated 2 years ago
- Cobalt Strike 二开项目☆181Updated 2 years ago
- 远程创建任务计划工具☆183Updated 2 years ago
- Linux下用于远程加载可执行文件以达到内存加载的目的☆202Updated 2 years ago
- 一款基于Http.sys的利用工具☆190Updated 2 years ago
- 一个加壳工具☆62Updated 5 years ago
- ☆58Updated 8 months ago
- 利用白名单文件 cdb.exe 执行 shellcode☆213Updated 2 years ago
- Windows一键检测应急响应服务工具/r3数据采集☆98Updated 2 years ago
- 白加黑的快速生成器(针对IAT类型)☆95Updated 2 years ago
- ☆77Updated 5 years ago
- [windows]pe -> shellcode -> shellcodeLoader -> (pe2shellcode go on?)☆76Updated 3 years ago
- C++枚举磁盘列表、遍历指定盘搜索特定类型文件/微信导出密钥,文件回传等功能☆153Updated 2 years ago
- 过360拦截加载无驱动签名☆60Updated 3 years ago
- 使用Visral Studio开发ShellCode☆189Updated last year
- 强制关闭360 需要管理员权限☆169Updated 3 years ago
- SysEye是一个window上的基于att&ck现代EDR设计思想的威胁响应工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆64Updated 2 years ago
- cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等☆40Updated 2 years ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆127Updated last year
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆151Updated 7 months ago
- 免杀死亡笔记☆115Updated 2 years ago
- 自动化dll劫持测试工具。Automated dll hijacking testing tool☆81Updated 3 years ago
- pe reflection tool, which confuses invoke and entry☆41Updated 2 years ago
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆148Updated 3 years ago
- 白文件扫描器 非公开☆26Updated 3 years ago
- 进行克隆用户、添加用户等账户防护安全检测的轻巧工具☆175Updated 3 years ago
- 替代PrintBug用于本地提权的新方式,主要利�用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆148Updated 3 years ago