determinasc / SysWhispers3WinHttpLinks
SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译,文件大小14KB,可免杀绕过360核晶防护与Defender
☆32Updated 2 years ago
Alternatives and similar repositories for SysWhispers3WinHttp
Users that are interested in SysWhispers3WinHttp are comparing it to the libraries listed below
Sorting:
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆38Updated 9 months ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆75Updated last year
- Bypass EDR Create TaskServers☆37Updated 2 years ago
- 密码收集☆58Updated 3 years ago
- ☆34Updated 3 months ago
- shellcode loader by c++,免杀,bypass,☆15Updated 2 years ago
- 重构Beacon☆15Updated 9 months ago
- ☆49Updated 2 years ago
- 利用EFSRPC协议批量探测出网☆66Updated last year
- Hidedump:a lsassdump tools that may bypass EDR☆51Updated last year
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago
- ☆15Updated last year
- 在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。☆33Updated 3 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆44Updated last year
- dll劫持、dll hijack、Bypass Antivirus、Red Team☆47Updated 7 months ago
- golang+c#乱写了一个基于http的垃圾远控(支持团队协同作战,功能很少)(三端)☆43Updated 3 years ago
- C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…☆16Updated 3 years ago
- 过360拦截加载无驱动签名☆60Updated 3 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆23Updated 4 years ago
- 快速Go建你的免杀项目☆24Updated 9 months ago
- 通过文件加载和远程URL加载方式实现Shellcode分离加载☆31Updated 2 years ago
- 使用Csharp实现自动修改注册表键并强制锁屏,使其可被抓取明文密码。☆30Updated 4 years ago
- Zerologon自动化脚本☆90Updated last year
- Shellcode Reductio Entropy Tools☆69Updated last year
- RPC 调用添加ssp扩展dump lsass☆19Updated 2 years ago
- 一个demo☆25Updated last year
- Cobalt Strike BOF that Add a user to localgroup by samr☆130Updated 2 years ago
- 用于解密并加载shellcode,支持RC4和AES两种解密方法,并使用DInvoke来动态调用WinAPI函数,从而尝试绕过某些安全解决方案☆30Updated last year
- ☆18Updated 3 years ago