用于Dump指定进程的内存,主要利用静默退出机制(SilentProcessExit)和Windows API(MiniDumpW)实现
☆25Dec 13, 2021Updated 4 years ago
Alternatives and similar repositories for goHashDumper
Users that are interested in goHashDumper are comparing it to the libraries listed below
Sorting:
- ☆18Aug 15, 2021Updated 4 years ago
- frp修改版,增加socks、pf命令,便捷启用socks5代理、端口转发,且去除流量特征,增加loadini命令,支持命令行参数导入base64编码的配置文件☆103Dec 5, 2021Updated 4 years ago
- 基于Golang实现的Shellcode内存加载器,共实现3中内存加载shellcode方式,UUID加载,MAC加载和IPv4加载,目前能过主流杀软(包括Windows Defender)☆253Dec 16, 2021Updated 4 years ago
- bypass AV生成工具,目前免杀效果不是很好了,但是过个360,火绒啥的没问题☆107Nov 7, 2021Updated 4 years ago
- Use Hive to hijack a Hadoop cluster+☆17Apr 30, 2020Updated 5 years ago
- 用CSharp写的一款信息搜集工具,目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密☆250Aug 26, 2020Updated 5 years ago
- creddump bypass AV☆42Nov 6, 2020Updated 5 years ago
- Read Navicat 12 Password☆19Jun 7, 2020Updated 5 years ago
- A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.☆162Sep 6, 2022Updated 3 years ago
- C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…☆17Sep 8, 2021Updated 4 years ago
- 基于csharp实现的免杀shellcode加载器☆31May 18, 2021Updated 4 years ago
- github信息泄露辅助工具☆52Jan 16, 2023Updated 3 years ago
- ReturnGate, just like HellsGate.☆68Aug 10, 2022Updated 3 years ago
- Basic multi platform meterpreter loader module.☆16Jul 21, 2020Updated 5 years ago
- fastjson 被动扫描、不出网payload生成☆367Nov 19, 2021Updated 4 years ago
- 远程创建任务计划工具☆190Apr 23, 2022Updated 3 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- 隐藏可执行内存☆267Apr 27, 2025Updated 10 months ago
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Sep 28, 2022Updated 3 years ago
- OwOwning with the Windows API Examples and Code. DEFCON Furs 2020 presentation.☆13Jan 18, 2024Updated 2 years ago
- By write list bypassuac☆172Oct 22, 2021Updated 4 years ago
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆149Mar 13, 2022Updated 4 years ago
- ☆32Jul 2, 2020Updated 5 years ago
- frp0.38.1 支持域前置、远程加载配置文件、配置文件自删除、流量特征修改☆133Apr 26, 2022Updated 3 years ago
- WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配☆29Jun 26, 2022Updated 3 years ago
- 利用图形化识别技术快速关闭目标机器上的杀毒软件☆280Sep 30, 2021Updated 4 years ago
- CobaltStrike Malleable Profile☆22May 16, 2022Updated 3 years ago
- Windows API/constants, identity, and WinHTTP/WinINet for Go.☆19Mar 6, 2026Updated 2 weeks ago
- CVE-2021-36798: CobaltStrike < 4.4 Dos☆103Sep 26, 2021Updated 4 years ago
- go 模拟发送tcp syn 包进行端口扫描☆16Aug 22, 2019Updated 6 years ago
- 开源!自主设计的badusb电路板☆10Mar 26, 2021Updated 4 years ago
- Golang implementation of Reflective load PE from memory☆64Jan 10, 2022Updated 4 years ago
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆729Sep 1, 2021Updated 4 years ago
- golang implementation of Syswhisper2/Syswhisper3☆23Mar 23, 2022Updated 3 years ago
- golang amsi bypass☆30Dec 4, 2021Updated 4 years ago
- fastjson全版本漏洞利用工具,只支持POST☆10Jan 5, 2021Updated 5 years ago
- 利用NTLM Hash读取Exchange邮件☆441Jan 7, 2025Updated last year
- [windows]pe -> shellcode -> shellcodeLoader -> (pe2shellcode go on?)☆78Dec 15, 2021Updated 4 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Apr 8, 2022Updated 3 years ago