coleak2021 / hidedumpLinks
Hidedump:a lsassdump tools that may bypass EDR
☆51Updated last year
Alternatives and similar repositories for hidedump
Users that are interested in hidedump are comparing it to the libraries listed below
Sorting:
- cobaltstrike的BypassUAC、提权dll插件☆84Updated 8 months ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆74Updated 2 weeks ago
- 主要用于隐藏进程真实路径,进程带windows真签名☆114Updated 9 months ago
- mssqlproxy python3.5+ 并修复bug☆64Updated 2 years ago
- File entropy calculator - Golang☆28Updated last year
- ☆49Updated 2 years ago
- 集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集☆84Updated last year
- 利用EFSRPC协议批量探测出网☆66Updated last year
- Zerologon自动化脚本☆93Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆77Updated 2 years ago
- 绕过defender的完整项目☆33Updated last year
- ☆26Updated 3 years ago
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆72Updated 5 months ago
- ruoyi 后台定时任务注入哥斯拉内存马☆51Updated last year
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆79Updated 3 years ago
- 快速Go建你的免杀项目☆24Updated 10 months ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆89Updated last year
- Lsass memory dump.☆53Updated last year
- 根据攻防以及域信息收集经验dump快而有用的域信息☆104Updated last year
- Cobalt Strike plugin☆52Updated last year
- XOR 加密 分离免杀☆67Updated last year
- Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具☆110Updated last year
- EWSTool是一个针对EXCHANGE邮件服务器的后渗透利用工具。使用ews接口,实现人员邮箱列表获取、搜索邮件、下载邮件等实用功能。☆61Updated 4 months ago
- Zerologon exploit with restore DC password automatically☆139Updated last year
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆38Updated 10 months ago
- 检测域内常见一把梭漏洞,包括:NoPac、ZeroLogon、CVE-2022-26923、PrintNightMare☆61Updated last year
- 批量获取域内机器桌面文件☆80Updated 2 years ago
- 用c#实现了个远程拉取Mimikatz.ps1☆61Updated last year
- EMQX Dashboard Malicious Plugin leading to RCE☆37Updated last month