determinasc / SysWhispers3WinHttpLinks
SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译,文件大小14KB,可免杀绕过360核晶防护与Defender
☆32Updated 2 years ago
Alternatives and similar repositories for SysWhispers3WinHttp
Users that are interested in SysWhispers3WinHttp are comparing it to the libraries listed below
Sorting:
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆68Updated 2 years ago
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆38Updated 11 months ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆137Updated last year
- XOR 加密 分离免杀☆67Updated last year
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆83Updated 3 years ago
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆73Updated 5 months ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Updated 2 years ago
- 通过文件加载和远程URL加载方式实现Shellcode分离加载☆31Updated 2 years ago
- C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…☆16Updated 3 years ago
- Hidedump:a lsassdump tools that may bypass EDR☆51Updated last year
- 过木马免杀制作器☆55Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆62Updated 4 months ago
- dll劫持、dll hijack、Bypass Antivirus、Red Team☆50Updated 9 months ago
- 主要用于隐藏进程真实路径,进程带windows真签名☆114Updated 10 months ago
- Shellcode Reductio Entropy Tools☆71Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆49Updated 2 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆80Updated 3 weeks ago
- shellcode loader by c++,免杀,bypass,☆15Updated 2 years ago
- 密码收集☆58Updated 3 years ago
- vehsyscall:a syscall project that may bypass EDR☆58Updated last year
- ☆49Updated 2 years ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago
- Bypass EDR Create TaskServers☆37Updated 2 years ago
- golang+c#乱写了一个基于http的垃圾远控(支持团队协同作战,功能很少)(三端)☆43Updated 3 years ago
- 重构Beacon☆15Updated 11 months ago
- 白加黑的快速生成器(针对IAT类型)☆104Updated 2 years ago
- 制作 shellcode 的模板☆27Updated 9 months ago
- 利用EFSRPC协议批量探测出网☆66Updated last year
- ☆92Updated 4 years ago