自定义函数堆栈,从而绕过ETW检测,这个是完整版。
☆13Apr 15, 2024Updated last year
Alternatives and similar repositories for CustomStack
Users that are interested in CustomStack are comparing it to the libraries listed below
Sorting:
- 使用Visral Studio开发ShellCode☆234Oct 11, 2023Updated 2 years ago
- ☆10Nov 2, 2023Updated 2 years ago
- 内网渗透、工具开发、二进制等相关笔记☆12Mar 26, 2023Updated 2 years ago
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆20Dec 3, 2024Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆63Apr 22, 2025Updated 10 months ago
- Rust 重构的 sRDI☆17Sep 9, 2024Updated last year
- A dynamic HTTP/S stager that lets one shellcode loader be reused for different encrypted payloads - no rebuilds.☆19Oct 1, 2025Updated 4 months ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆40Jan 14, 2024Updated 2 years ago
- Reverse Socks5 proxy for windows☆16Oct 13, 2022Updated 3 years ago
- CloudflaredRAT is a simple combination of popular open-source tools, wrapping a local-facing shell with Cloudflares Argo Tunnel in an exe…☆14Oct 30, 2020Updated 5 years ago
- 无Windows API的新型恶意程序:自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究,A new type of malicious program without Windows API☆88Mar 27, 2025Updated 11 months ago
- Self Cleanup in post-ex job☆59Sep 10, 2024Updated last year
- GXX是一款强大的指纹识别工具,基于YAML配置的规则进行目标系统识别。 本工具支持多种协议(HTTP/HTTPS、TCP、UDP),可进行高效的批量目标扫描和精准识别。☆29Updated this week
- File entropy calculator - Golang☆30Feb 7, 2024Updated 2 years ago
- Coffee is a loader for ELF (Executable and Linkable Format) object files written in Rust. Coffee是一个用Rust语言编写的ELF object文件的加载器☆63Apr 29, 2024Updated last year
- Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven☆261Oct 16, 2024Updated last year
- LD_PRELOAD Linux rootkit (x86 & ARM)☆26Apr 8, 2019Updated 6 years ago
- ☆36Nov 8, 2024Updated last year
- 一个demo☆23Apr 2, 2024Updated last year
- 将任何 elf 或命令转换为 shellcode☆61Mar 20, 2024Updated last year
- PE to shellcode☆28Jan 1, 2025Updated last year
- An i686 & x86_64 position independent implant template for Rust 🦀☆33Jul 6, 2025Updated 7 months ago
- Template for writing shellcode in rust☆26Feb 27, 2022Updated 4 years ago
- PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are rela…☆43Jul 9, 2025Updated 7 months ago
- Rust implementation, creating a scheduled task programmatically with user logon trigger.☆47Jun 10, 2025Updated 8 months ago
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- beta☆120Sep 24, 2024Updated last year
- This is my own implementation of the Perun's Fart technique by Sektor7☆72May 14, 2022Updated 3 years ago
- An implementation of an indirect system call☆132Aug 25, 2023Updated 2 years ago
- A simple Sleepmask BOF example☆167Nov 24, 2025Updated 3 months ago
- Attack cobalt strike server’s FCS by DoW☆75Aug 14, 2023Updated 2 years ago
- 在5MB的内存和硬盘以内,实现FRPC的WebUI管理界面,抛弃臃肿的Java和MySQL☆12Feb 10, 2023Updated 3 years ago
- Callback Function Loader Implemented in Go☆140Mar 26, 2024Updated last year
- Binary Hollowing☆94Sep 10, 2024Updated last year
- ☆40Nov 1, 2021Updated 4 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆43Apr 27, 2023Updated 2 years ago
- ☆245Sep 19, 2023Updated 2 years ago
- execute PE in memory Filelessly☆51Feb 8, 2025Updated last year
- 重构Beacon☆165Aug 19, 2024Updated last year