determinasc / SysWhispers3WinHttpLinks
SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译,文件大小14KB,可免杀绕过360核晶防护与Defender
☆32Updated 2 years ago
Alternatives and similar repositories for SysWhispers3WinHttp
Users that are interested in SysWhispers3WinHttp are comparing it to the libraries listed below
Sorting:
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆68Updated 2 years ago
- 通过文件加载和远程URL加载方式实现Shellcode分离加载☆31Updated 2 years ago
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆38Updated 10 months ago
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆79Updated 3 years ago
- Shellcode Reductio Entropy Tools☆71Updated last year
- XOR 加密 分离免杀☆67Updated last year
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆137Updated last year
- ☆49Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆77Updated 2 years ago
- golang+c#乱写了一个基于http的垃圾远控(支持团队协同作战,功能很少)(三端)☆43Updated 3 years ago
- 远程创建任务计划工具☆188Updated 3 years ago
- Cobalt Strike 二开项目☆184Updated 2 years ago
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆72Updated 5 months ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆49Updated 2 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆70Updated last week
- 过木马免杀制作器☆55Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆62Updated 3 months ago
- 将PE文件进行AES加密,然后从远程拉取加载内存中实现免杀☆36Updated 2 years ago
- Bypass EDR Create TaskServers☆37Updated 2 years ago
- This is a third party agent for Havoc C2 written in golang.☆58Updated last year
- ☆35Updated 2 years ago
- C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…☆16Updated 3 years ago
- 调用x64dbg中的loadll.exe白加黑示例代码☆63Updated last year
- 重构Beacon☆15Updated 11 months ago
- more conveniently Visual-Studio-BOF-template☆67Updated last year
- ☆15Updated last year
- ☆91Updated 4 years ago
- 在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。☆33Updated 3 years ago