colind0pe / AV-Bypass-Learning
免杀学习笔记
☆221Updated last year
Alternatives and similar repositories for AV-Bypass-Learning:
Users that are interested in AV-Bypass-Learning are comparing it to the libraries listed below
- CrossC2 developed based on the Cobalt Strike framework can be used for other cross-platform system control. CrossC2Kit provides some inte…☆218Updated last year
- CobaltStrike beacon written in golang☆415Updated last year
- CobaltStrike <= 4.7.1 RCE☆381Updated 2 years ago
- Some Service DCOM Object and SeImpersonatePrivilege abuse.☆356Updated 2 years ago
- vhost password decrypt☆246Updated 6 months ago
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆371Updated 2 years ago
- nim,免杀,红队,shellcode,bypass,apt,bypass-av.☆201Updated 2 years ago
- PrintNotifyPotato☆518Updated 2 years ago
- Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-softw…☆279Updated 2 years ago
- Take a screenshot without injection for Cobalt Strike☆186Updated last year
- 免杀版Neo-reGeorg☆256Updated last year
- C2 redirector base on caddy☆203Updated 10 months ago
- 通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化☆333Updated 3 years ago
- Loading BOF & ShellCode without executable permission memory.☆430Updated 6 months ago
- CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.☆315Updated 2 years ago
- Memshell☆273Updated 3 years ago
- PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers☆92Updated 2 years ago
- 基于golang实现的impacket☆243Updated last year
- Red Team C2 Framework with AV/EDR bypass capabilities.☆390Updated last week
- 获取服务器或域控登录日志☆270Updated last year
- 添加计划任务方法集合☆279Updated last year
- A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.☆157Updated 2 years ago
- Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)☆276Updated 3 years ago
- Modifying JuicyPotato to support load shellcode and webshell☆190Updated 3 years ago
- ☆274Updated last month
- RPC远程主机信息匿名扫描工具☆318Updated 2 years ago
- dump lsass进程工具☆549Updated last year
- Java JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders☆195Updated last year
- ☆234Updated 2 years ago
- Mssql利用工具☆263Updated last year