通杀检测基于白文件patch黑代码的免杀技术的后门
☆183Aug 3, 2024Updated last year
Alternatives and similar repositories for white_patch_detect
Users that are interested in white_patch_detect are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A tool for automatic patch shellcode into binary file to bypass AV. / 一个自动patch shellcode到二进制文件的工具☆577Apr 8, 2026Updated last month
- 重构Beacon☆166Aug 19, 2024Updated last year
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆163Oct 27, 2024Updated last year
- 使用Visral Studio开发ShellCode☆245Oct 11, 2023Updated 2 years ago
- 针对PE文件的分离的攻防对抗工具,红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and…☆286Aug 20, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 一款基于PE Patch技术的后渗透免杀工具,主要支持x64☆355Mar 5, 2025Updated last year
- 寻找可利用的白文件☆560Aug 18, 2025Updated 9 months ago
- shellcode生成框架☆91Jul 11, 2024Updated last year
- Binary Hollowing☆98Sep 10, 2024Updated last year
- 主要用于隐藏进程真实路径,进程带windows真签名☆119Oct 15, 2024Updated last year
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆452Mar 11, 2024Updated 2 years ago
- 入侵痕迹清理/Cleaning up traces of intrusion☆250Nov 6, 2024Updated last year
- Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode☆209May 28, 2024Updated last year
- more conveniently Visual-Studio-BOF-template☆76Sep 12, 2023Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- 自动化找白文件,用于扫描 EXE 文件的导入表,列出导入的DLL文件,并筛选出非系统DLL,符合条件的文件将被复制到特定的 X64 或 X86 文件夹☆629Mar 24, 2026Updated 2 months ago
- 基于个人习惯使用C/C++的shellcode开发项目模板☆50Aug 20, 2024Updated last year
- 一键提取exe的图标、嵌入图标、资源信息、版本信息、修改时间、数字签名,降低程序熵值☆438Dec 17, 2024Updated last year
- 将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密☆365Sep 8, 2022Updated 3 years ago
- Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…☆1,322Jun 21, 2024Updated last year
- Syscall免杀☆509Jun 21, 2024Updated last year
- Pillager是一个适用于后渗透期间的信息收集工具☆1,286Sep 7, 2024Updated last year
- 助力每一位RT队员,快速生成免杀木马☆835Apr 17, 2024Updated 2 years ago
- golang 实现的windows and linux 端口复用工具。☆309Jan 30, 2024Updated 2 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- 渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理☆1,392Feb 28, 2025Updated last year
- Self Cleanup in post-ex job☆59Sep 10, 2024Updated last year
- Automated Hosting Information Hunting Tool - Windows 主机信息自动化狩猎工具☆551Apr 15, 2025Updated last year
- 哥斯拉webshell管理工具二次开发规避流量检测设备☆1,062Dec 2, 2025Updated 5 months ago
- 添加计划任务方法�集合☆314Aug 6, 2023Updated 2 years ago
- beta☆119Sep 24, 2024Updated last year
- 一键修改exe、dll的编译时间、创建时间、修改时间和访问时间☆198Apr 16, 2023Updated 3 years ago
- OrcaC2是一款基于Websocket加密通信的多功能C&C框架,使用Golang实现。☆676Dec 30, 2022Updated 3 years ago
- Rust 重构的 sRDI☆18Sep 9, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 40行代码检测到大部分CobaltStrike的shellcode☆292Jul 25, 2021Updated 4 years ago
- 一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。☆795Nov 15, 2024Updated last year
- C2-下一代RAT☆516Aug 10, 2024Updated last year
- 蓝队应急工具☆544Jun 10, 2024Updated last year
- A BOF/COFF loader implemented in Go and CGO.☆23Jan 16, 2024Updated 2 years ago
- 一键生成免杀木马的 shellcode 免杀框架☆195Jun 28, 2024Updated last year
- EXE转ShellCode工具☆247Aug 29, 2022Updated 3 years ago