clownfive / CustomStack
自定义函数堆栈,从而绕过ETW检测,这个是完整版。
☆13Updated 10 months ago
Alternatives and similar repositories for CustomStack:
Users that are interested in CustomStack are comparing it to the libraries listed below
- vehsyscall:a syscall project that may bypass EDR☆54Updated last year
- ☆26Updated last year
- ☆40Updated last year
- more conveniently Visual-Studio-BOF-template☆61Updated last year
- Self Cleanup in post-ex job☆49Updated 6 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆42Updated last year
- kill AV/EDR☆22Updated last year
- Binary Hollowing☆70Updated 6 months ago
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- Efficient RAT signature locator for bypassing AV/EDR, supporting static scanning and memory scanning.☆33Updated 4 months ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆42Updated 10 months ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆41Updated last year
- Beacon compiled using clang☆63Updated 2 years ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- Silently Install Chrome Extension For Persistence☆49Updated 7 months ago
- ☆31Updated last year
- Rust 重构的 sRDI☆14Updated 6 months ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆31Updated 2 years ago
- 一个demo☆23Updated 11 months ago
- shellcode生成框架☆83Updated 8 months ago
- Shellcode Reductio Entropy Tools☆64Updated last year
- ☆17Updated 3 years ago
- Fork & modify of Wireguard's Memmod☆32Updated last year
- Kill Everything AV/EDR☆25Updated 3 months ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆71Updated last year
- ☆15Updated 8 months ago
- ☆91Updated 3 years ago
- Load shellcode via syscall☆47Updated 3 years ago
- AddDefenderExclusions Beacon Object File☆34Updated last year