jas502n / DriveLife-PsTrojan
TrojanDropper/PS.Maloader.d
☆12Updated 2 years ago
Related projects: ⓘ
- SyscallLoader☆9Updated 3 years ago
- inject shellcode into remote process via message hook☆15Updated 3 years ago
- 寻找可注入进程☆13Updated 4 years ago
- ☆10Updated 2 years ago
- ☆10Updated this week
- Windows Persistence Collection☆12Updated 3 years ago
- Package that provides different PE tricks to difficult the reverse engineering of your Windows applications.☆12Updated 4 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆12Updated 2 years ago
- ☆16Updated 4 years ago
- Windows NTLMSSP library☆11Updated 3 years ago
- Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)☆11Updated 2 years ago
- Source code RDPUploader☆18Updated 5 years ago
- Show AV Processes list☆14Updated 3 years ago
- Proofs-Of-360Security Sandbox Escape☆10Updated 2 years ago
- Use current thread token to execute command☆15Updated 3 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆23Updated 4 years ago
- 从入门到放弃的产物,学习过程中用python实现的一个单点c2基本功能☆10Updated 4 years ago
- ☆36Updated 4 years ago
- works but not work, cao!☆24Updated 3 years ago
- 非涉密源码☆19Updated 6 months ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Updated last year
- ☆35Updated 4 years ago
- 从admin冲到TrustedInstaller☆16Updated last year
- Like Hell's Gate but more EGG :)☆20Updated 2 years ago
- DiagTrack Eop (From Service Account to SYSTEM)☆20Updated last year
- ☆12Updated this week
- Simple .NET profiler shellcode loader☆10Updated 2 years ago
- 针对于AzureAttestService服务的本地提权Eop,微软表示已经进行修复☆2Updated 2 years ago
- ☆14Updated 3 years ago