huangqiheng / andpack
PE文件打包器。将一系列的插件dll(寄生dll),打包捆绑到目标exe中,以寄生的方式改变程序的原有行为。寄生的dll完全手动装配,隐藏执行;宿主被恢复后,会被寄生dll强势再感染。
☆22Updated 12 years ago
Alternatives and similar repositories for andpack:
Users that are interested in andpack are comparing it to the libraries listed below
- Thanks to all those who helped me.☆20Updated 6 years ago
- 安全卫士r3工具集☆37Updated 5 years ago
- 具备对PE文件添加区段、添加花指令、对代码段加密、修复重定位、加密IAT等功能☆58Updated 5 years ago
- 一个加壳工具☆62Updated 5 years ago
- shellcode注入测试工具☆49Updated 5 years ago
- 加密壳☆33Updated 5 years ago
- Rapid generation ShellCode☆60Updated 7 years ago
- Windows CVE主防(HIPS/HIDS)☆54Updated 3 years ago
- Gh0st 源码分析 by easyserverdev☆27Updated 5 years ago
- [HIPS]RDP(3389)爆破防护☆45Updated 6 years ago
- Remote PC control (Windows Platform). || PC远程控制(Windows平台)。☆49Updated 4 years ago
- Search for information from manifests☆44Updated 6 years ago
- WMI无文件后门☆9Updated 4 years ago
- Add export function and convert exe to dll☆25Updated 4 years ago
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆50Updated 4 years ago
- ida提取特征码脚本☆55Updated 5 years ago
- Only for research and learning, not for commercial and illegal use☆10Updated 5 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆100Updated 3 years ago
- 远控源码☆40Updated 6 years ago
- 简单安排一下 autochk.sys 这个rootkit☆71Updated 2 years ago
- vs2019 环境 Gh0st编译通过☆11Updated 3 years ago
- WINDOWS黑客編程技術詳解 [Windows-Hack-Programming backup]☆42Updated 5 years ago
- 使用C++控制台实现的加壳器☆81Updated 6 years ago
- windwos内核研究与驱动Code☆62Updated 3 years ago
- Kill Protected Process Light Process (include av)☆56Updated last year
- 基于UC的启发式杀毒引擎[还没做完]☆34Updated 3 years ago
- ReflectiveDLL学习代码☆33Updated 4 years ago
- 《黑客免杀攻防》一书中的C++壳☆15Updated 2 years ago
- 横向移动三剑客 ( Lateral movement tools)☆29Updated 3 years ago
- 获取浏览器保存密码,支持IE、Chrome和火狐☆12Updated 5 years ago