crisprss / BypassUserAddLinks
通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
☆337Updated 3 years ago
Alternatives and similar repositories for BypassUserAdd
Users that are interested in BypassUserAdd are comparing it to the libraries listed below
Sorting:
- 远程shellcode加载&权限维持+小功能☆298Updated last year
- 自己开的cs插件☆244Updated 2 years ago
- 提取DC日志,快速��获取域用户对应IP地址☆304Updated 3 years ago
- RPC远程主机信息匿名扫描工具☆321Updated 2 years ago
- 基于Golang实现的Shellcode内存加载器,共实现3中内存加载shellcode方式,UUID加载,MAC加载和IPv4加载,目前能过主流杀软(包括Windows Defender)☆253Updated 3 years ago
- vhost password decrypt☆248Updated 9 months ago
- CS免杀加载器☆173Updated 3 months ago
- Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)☆280Updated 3 years ago
- 远程创建任务计划工具☆188Updated 3 years ago
- 获取服务器或域控登录日志☆272Updated last year
- Modifying JuicyPotato to support load shellcode and webshell☆192Updated 4 years ago
- 添加计划任务方法集合☆294Updated last year
- 将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密☆364Updated 2 years ago
- Cobalt Strike 二开项目☆184Updated 2 years ago
- Mssql利用工具☆269Updated last year
- Exchange 服务器安全性的辅助测试工具☆327Updated last year
- A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations M…☆206Updated 3 years ago
- 利用白名单文件 cdb.exe 执行 shellcode☆214Updated 3 years ago
- 一款可以过国内所有杀软可以过云查杀的shellcode loader☆147Updated 3 years ago
- Memshell☆278Updated 3 years ago
- 强制关闭360 需要管理员权限☆172Updated 3 years ago
- 防火墙出网探测工具,内网穿透型socks5代理☆269Updated 3 years ago
- EDR绕过demo☆291Updated last year
- ☆155Updated last year
- 重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.☆313Updated 2 years ago
- AvHunt-杀毒软件识别☆174Updated 2 years ago
- CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.☆317Updated 2 years ago
- ☆340Updated 3 years ago
- dump lsass进程工具☆553Updated last year
- python写的一款免杀工具(shellcode加载器)BypassAV,国内杀软全过(windows denfend)2021-9-13☆279Updated 8 months ago