komomon / Invoke-Obfuscation-BypassLinks
powershell免杀,Invoke-Obfuscation-Bypass分析和修改
☆15Updated 2 years ago
Alternatives and similar repositories for Invoke-Obfuscation-Bypass
Users that are interested in Invoke-Obfuscation-Bypass are comparing it to the libraries listed below
Sorting:
- ☆24Updated 2 years ago
- Cobalt Strike BOF that Add an admin user☆73Updated 2 years ago
- xiebroC2 plugin☆48Updated 3 months ago
- powershell免杀混淆器,简单有效。A simple and effective powershell obfuscaiton tool bypass Anti-Virus☆15Updated 2 years ago
- CobaltStrike4.5 Sleeve解密文件,搬 砖加一点点修改, 仅作备份使用.☆31Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆74Updated last year
- Cobalt Strike BOF that Add a user to localgroup by samr☆129Updated 2 years ago
- Shellcode Reductio Entropy Tools☆67Updated last year
- 异或shellcode和ppid欺骗免杀☆14Updated 3 years ago
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆88Updated 2 years ago
- ☆49Updated 2 years ago
- Zerologon exploit with restore DC password automatically☆136Updated last year
- ☆34Updated 2 years ago
- ☆26Updated 3 years ago
- Offensive Code☆20Updated 2 years ago
- ☆31Updated last year
- ASPX ShellCode Loader☆50Updated last year
- more conveniently Visual-Studio-BOF-template☆65Updated last year
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆57Updated 3 years ago
- command execute without 445 port☆52Updated 3 years ago
- Take a screenshot without injection for Cobalt Strike☆190Updated last year
- Binary Hollowing☆76Updated 8 months ago
- ☆22Updated last year
- 将PE文件进行AES加密,然后从远程拉取加载内存中实现免杀☆36Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆43Updated last year
- CrackMapExec extension module/protocol support☆42Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- Hidedump:a lsassdump tools that may bypass EDR☆51Updated last year
- Zerologon自动化脚本☆90Updated last year
- If you only have hash, you can still operate exchange☆74Updated 3 years ago