clownfive / CustomStackLinks
自定义函数堆栈,从而绕过ETW检测,这个是完整版。
☆14Updated last year
Alternatives and similar repositories for CustomStack
Users that are interested in CustomStack are comparing it to the libraries listed below
Sorting:
- Self Cleanup in post-ex job☆58Updated 11 months ago
- shellcode生成框架☆88Updated last year
- vehsyscall:a syscall project that may bypass EDR☆58Updated last year
- Beacon compiled using clang☆72Updated 2 years ago
- beta☆118Updated 11 months ago
- Binary Hollowing☆78Updated 11 months ago
- more conveniently Visual-Studio-BOF-template☆68Updated last year
- 一个demo☆24Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆54Updated last year
- An implementation of an indirect system call☆129Updated last year
- A C Implementation for Bypassing Security Software☆27Updated 4 months ago
- ☆27Updated last year
- A Blind EDR Project for Educational Purposes☆47Updated 7 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆51Updated 2 years ago
- A BOF/COFF loader implemented in Go and CGO.☆22Updated last year
- PE to shellcode☆27Updated 7 months ago
- Stack integrity verification to Detect SleepMask or CallStack Spoofer☆35Updated last month
- ☆41Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆49Updated 2 years ago
- create schtasks bypass AV☆20Updated last year
- RawCopy - Golang implementation☆24Updated 2 years ago
- kill AV/EDR☆22Updated 2 years ago
- ☆14Updated 2 months ago
- ☆92Updated 4 years ago
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆77Updated last year
- A little tool to play with Windows security☆12Updated 3 weeks ago
- ☆15Updated last year
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆138Updated 9 months ago
- Code with Windows Hacker☆12Updated 2 years ago
- HVNC PoC (Hidden VNC) in Rust☆29Updated 2 months ago