用于Dump指定进程的内存,主要利用静默退出机制(SilentProcessExit)和Windows API(MiniDumpW)实现
☆25Dec 13, 2021Updated 4 years ago
Alternatives and similar repositories for goHashDumper
Users that are interested in goHashDumper are comparing it to the libraries listed below
Sorting:
- ☆18Aug 15, 2021Updated 4 years ago
- frp修改版,增加socks、pf命令,便捷启用socks5代理、端口转发,且去除流量特征,增加loadini命令,支持命令行参数导入base64编码的配置文件☆103Dec 5, 2021Updated 4 years ago
- 基于Golang实现的Shellcode内存加载器,共实现3中内存加载shellcode方式,UUID加载,MAC加载和IPv4加载,目前能过主流杀软(包括Windows Defender)☆253Dec 16, 2021Updated 4 years ago
- bypass AV生成工具,目前免杀效果不是很好了,但是过个360,火绒啥的没问题☆107Nov 7, 2021Updated 4 years ago
- Use Hive to hijack a Hadoop cluster+☆17Apr 30, 2020Updated 5 years ago
- creddump bypass AV☆42Nov 6, 2020Updated 5 years ago
- 用CSharp写的一款信息搜集工具,目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密☆251Aug 26, 2020Updated 5 years ago
- Read Navicat 12 Password☆19Jun 7, 2020Updated 5 years ago
- golang amsi bypass☆30Dec 4, 2021Updated 4 years ago
- Windows API/constants, identity, and WinHTTP/WinINet for Go.☆19Jan 13, 2026Updated last month
- 基于csharp实现的免杀shellcode加载器☆31May 18, 2021Updated 4 years ago
- 隐藏可执行内存☆267Apr 27, 2025Updated 10 months ago
- WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配☆29Jun 26, 2022Updated 3 years ago
- github信息泄露辅助工具☆52Jan 16, 2023Updated 3 years ago
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Sep 28, 2022Updated 3 years ago
- C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…☆17Sep 8, 2021Updated 4 years ago
- 远程创建任务计划工具☆190Apr 23, 2022Updated 3 years ago
- ☆32Jul 2, 2020Updated 5 years ago
- Golang implementation of Reflective load PE from memory☆64Jan 10, 2022Updated 4 years ago
- A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.☆162Sep 6, 2022Updated 3 years ago
- golang implementation of Syswhisper2/Syswhisper3☆23Mar 23, 2022Updated 3 years ago
- 利用图形化识别技术快速关闭目标机器上的杀毒软件☆280Sep 30, 2021Updated 4 years ago
- 参考CS的Bypass插件+分离免杀思想改造☆32Jan 13, 2021Updated 5 years ago
- CobaltStrike Malleable Profile☆22May 16, 2022Updated 3 years ago
- ReturnGate, just like HellsGate.☆68Aug 10, 2022Updated 3 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- By write list bypassuac☆172Oct 22, 2021Updated 4 years ago
- fastjson 被动扫描、不出网payload生成☆367Nov 19, 2021Updated 4 years ago
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Dec 16, 2021Updated 4 years ago
- Cobalt Strike DNS beacon parser☆11Nov 29, 2021Updated 4 years ago
- CVE-2021-36798: CobaltStrike < 4.4 Dos☆103Sep 26, 2021Updated 4 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Apr 8, 2022Updated 3 years ago
- DPX - the Doge Packer for eXecutables☆30Dec 21, 2021Updated 4 years ago
- 多重判断网站文件扫描(网页相似性,关键词,状态码)☆23Jun 24, 2024Updated last year
- 自不量力的mimikatz分离计划☆44Nov 28, 2021Updated 4 years ago
- inject or convert shellcode to PE☆41Oct 14, 2019Updated 6 years ago
- 强制关闭360 需要管理员权限☆171Feb 6, 2022Updated 4 years ago
- desktop screenshot☆29Apr 26, 2023Updated 2 years ago
- frp0.38.1 支持域前置、远程加载配置文件、配置文件自删除、流量特征修改☆133Apr 26, 2022Updated 3 years ago