huoji120 / safe_duck
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
☆15Updated 11 months ago
Related projects ⓘ
Alternatives and complementary repositories for safe_duck
- 过360拦截加载无驱动签名☆59Updated 3 years ago
- 简单安排一下 autochk.sys 这个rootkit☆67Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆66Updated 2 years ago
- 通过ACPI检测沙箱☆43Updated last year
- CobaltStrikeDetect☆45Updated 3 years ago
- bypass BeaconEye☆88Updated 3 years ago
- ☆36Updated 4 years ago
- 调用x64dbg中的loadll.exe白加黑示例代码☆60Updated 5 months ago
- 白文件扫描器 非公开☆26Updated 3 years ago
- Bypass EDR Create TaskServers☆34Updated last year
- SysEye是一个window上的基于att&ck现代EDR设计思想的威胁响应工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆62Updated 2 years ago
- geacon for apt profile☆21Updated 2 years ago
- 复现 《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆93Updated 3 weeks ago
- ReflectiveDLL学习代码☆32Updated 4 years ago
- ☆46Updated 3 years ago
- more conveniently Visual-Studio-BOF-template☆53Updated last year
- UAC_wenpon☆48Updated 3 years ago
- 批量检查远程桌面密码或ntlm是否正确☆40Updated 3 years ago
- somthing about Cobaltstrike☆17Updated 2 years ago
- 记录一下我学习的Win32CPP☆52Updated 3 years ago
- ☆49Updated 3 months ago
- power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes☆46Updated 3 years ago
- 重构Beacon☆11Updated 3 months ago
- 内存加载执行golang elf二进制文件☆21Updated 2 years ago
- ☆86Updated 2 years ago
- ☆89Updated 3 years ago
- PE学习小工具,它的作用就是将32位的PE文件的按内存对齐,然后合并所有节,接着新增一个节存放Shellcode,将程序入口位置修改到Shellcode的位置。☆18Updated 2 years ago
- [windows]pe -> shellcode -> shellcodeLoader -> (pe2shellcode go on?)☆75Updated 2 years ago