crisprss / Shellcode_Memory_LoaderLinks
基于Golang实现的Shellcode内存加载器,共实现3中内存加载shellcode方式,UUID加载,MAC加载和IPv4加载,目前能过主流杀软(包括Windows Defender)
☆252Updated 3 years ago
Alternatives and similar repositories for Shellcode_Memory_Loader
Users that are interested in Shellcode_Memory_Loader are comparing it to the libraries listed below
Sorting:
- 通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化☆336Updated 3 years ago
- EDR绕过demo☆291Updated last year
- 域信息收集工具☆400Updated 2 years ago
- 自己开的cs插件☆244Updated 2 years ago
- ☆338Updated 2 years ago
- 远程shellcode加载&权限维持+小功能☆298Updated last year
- nim一键免杀☆216Updated 4 years ago
- 使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。☆542Updated 3 years ago
- 将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密☆364Updated 2 years ago
- Some demos to bypass EDRs or AVs by 78itsT3@m☆353Updated 2 years ago
- RPC远程主机信息匿名扫描工具☆320Updated 2 years ago
- Modifying JuicyPotato to support load shellcode and webshell☆192Updated 3 years ago
- 一款可以过国内所有杀软可以过云查杀的shellcode loader☆147Updated 3 years ago
- golang shellcode loader 远程图片隐写加载执行 无文件落地☆190Updated 3 years ago
- CS免杀加载器☆169Updated 2 months ago
- Exchange 服务器安全性的辅助测试工具☆325Updated last year
- Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)☆279Updated 3 years ago
- asp.net内存马检测工具☆273Updated last year
- 重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.☆303Updated 2 years ago
- 提取DC日志,快速获取域用户对应IP地址☆303Updated 3 years ago
- useful-code☆184Updated last year
- 域内自动化信息搜集利用工具☆423Updated last year
- X系列安全工具-AV免杀框架-BypassAV☆207Updated 2 years ago
- python写的一款免杀工具(shellcode加载器)BypassAV,国内杀软全过(windows denfend)2021-9-13☆276Updated 7 months ago
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆433Updated last year
- Java内存马注入工具☆246Updated 2 years ago
- dump lsass进程工具☆551Updated last year
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆490Updated 2 years ago
- Mssql利用工具☆269Updated last year
- 获取服务器或域控登录日志☆271Updated last year