kyxiaxiang/360WFP_Exploit external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

kyxiaxiang/360WFP_Exploit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kyxiaxiang/360WFP_Exploit)

Close

kyxiaxiang / 360WFP_ExploitView on GitHubMore

• External links
• Readme badge

BYOVD: Use 360 ​​WFP driver to block EDR/XDR network connection.

☆105Feb 10, 2026Updated last month

Alternatives and similar repositories for 360WFP_Exploit

Users that are interested in 360WFP_Exploit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• buldansec / EnableEFS

  View on GitHub
  Enable EFS service as low priv user (PE & BOF)
  ☆21Jul 6, 2025Updated 8 months ago
• sliverarmory / malasada

  View on GitHub
  Linux Shared Library to Shellcode Loader
  ☆89Feb 15, 2026Updated last month
• HackingLZ / defender_overview

  View on GitHub
  Overview of MS Defender
  ☆118Feb 20, 2026Updated last month
• Teach2Breach / phantom_persist_rs

  View on GitHub
  Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence
  ☆63Jun 23, 2025Updated 9 months ago
• NtDallas / BOF_Spawn

  View on GitHub
  Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames
  ☆155Nov 23, 2025Updated 4 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• Archie-osu / PowerHook

  View on GitHub
  Hooking KPRCB IdlePreselect function to gain execution inside PID 0.
  ☆73Apr 13, 2025Updated 11 months ago
• armin-hg / NewCobaltstrikeTeamServer

  View on GitHub
  Go-based C2 server inspired by Cobalt Strike; seamless agent control, web UI, and Malleable Profile support. Fast, extensible, and secure…
  ☆30Updated this week
• CodeXTF2 / WebcamBOF

  View on GitHub
  Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options
  ☆158Mar 26, 2025Updated last year
• preludeorg / Regstoration

  View on GitHub
  A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library
  ☆24Nov 13, 2025Updated 4 months ago
• emdnaia / OdinLdr

  View on GitHub
  Cobaltstrike UDRL with memory evasion
  ☆15May 16, 2024Updated last year
• 0x4d5a-ctf / 38c3_com_talk

  View on GitHub
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆75Jan 3, 2025Updated last year
• dazzyddos / lsawhisper-bof

  View on GitHub
  A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, wit…
  ☆282Feb 21, 2026Updated last month
• realstatus / CVE-2024-40711-Exp

  View on GitHub
  CVE-2024-40711-exp
  ☆43Oct 17, 2024Updated last year
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆151Apr 18, 2025Updated 11 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• yehia-mamdouh / Lsassx

  View on GitHub
  Dumping LSASS Evaded Endpoint Security Solutions
  ☆18Feb 15, 2025Updated last year
• Octoberfest7 / enumhandles_BOF

  View on GitHub
  ☆126Sep 1, 2024Updated last year
• g0h4n / dende-rs

  View on GitHub
  Monitoring tool to detect patterns or IOCs (strings, regex, VirusTotal) and alert you and your team via console, Telegram or SMS written …
  ☆18Feb 17, 2026Updated last month
• NtDallas / OdinLdr

  View on GitHub
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆189Jan 17, 2026Updated 2 months ago
• Wh04m1001 / GamingServiceEoP

  View on GitHub
  ☆150Mar 22, 2024Updated 2 years ago
• 0xTriboulet / Abomination

  View on GitHub
  A synergized Visual Studio and Rust development environment
  ☆19Jan 25, 2025Updated last year
• outflanknl / seccomp-notify-injection

  View on GitHub
  Linux Process Injection via Seccomp Notifier
  ☆84Dec 9, 2025Updated 3 months ago
• TwoSevenOneT / EDRStartupHinder

  View on GitHub
  EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.
  ☆189Jan 11, 2026Updated 2 months ago
• x64dbg / lz4

  View on GitHub
  ☆14Dec 26, 2024Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• 0xEr3bus / PoolPartyBof

  View on GitHub
  A beacon object file implementation of PoolParty Process Injection Technique.
  ☆438Dec 21, 2023Updated 2 years ago
• Pizz33 / Go_Processhider

  View on GitHub
  Go实现用于Windows系统的进程隐藏工具，通过DLL注入技术将指定进程从任务管理器中隐藏
  ☆26Jan 22, 2026Updated 2 months ago
• Maldev-Academy / HookingLsassForCredentials

  View on GitHub
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆54May 12, 2025Updated 10 months ago
• ioncodes / SilentLoad

  View on GitHub
  "Service-less" driver loading
  ☆184Nov 28, 2024Updated last year
• werdhaihai / msi_lateral_mv

  View on GitHub
  Lateral Movement Bof with MSI ODBC Driver Install
  ☆148Sep 30, 2025Updated 5 months ago
• KingOfTheNOPs / Get-NetNTLM

  View on GitHub
  Internal Monologue BOF
  ☆79Dec 28, 2024Updated last year
• L4ys / IDA-WPP-Remover

  View on GitHub
  Remove WPP calls from hexrays decompiled code
  ☆56Jan 31, 2026Updated last month
• NtDallas / BOF_ExecuteAssembly

  View on GitHub
  Beacon Object File for Cobalt Strike that executes .NET assemblies in beacon with evasion techniques.
  ☆186Dec 23, 2025Updated 3 months ago
• zero2504 / Detoured-DLL-Injection

  View on GitHub
  DLL injection with Microsoft detours
  ☆22Dec 9, 2025Updated 3 months ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• joaoviictorti / rustbof

  View on GitHub
  A Rust template for writing Beacon Object Files (BOFs)
  ☆118Feb 11, 2026Updated last month
• Cracked5pider / earlycascade-injection

  View on GitHub
  early cascade injection PoC based on Outflanks blog post
  ☆240Nov 7, 2024Updated last year
• 0xTriboulet / rssh-rs

  View on GitHub
  ☆55May 31, 2025Updated 9 months ago
• KiExitDispatcher / GhostVEH

  View on GitHub
  Registers Vectored Exception Handlers by directly manipulating internal LdrpVectorHandlerList structure instead of calling RtlAddVectored…
  ☆36Jan 18, 2026Updated 2 months ago
• ANYLNK / NSecSoftBYOVD

  View on GitHub
  NSecSoftBYOVD POC
  ☆58Feb 12, 2026Updated last month
• zero2504 / FrostLock-Injection

  View on GitHub
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆43Apr 6, 2025Updated 11 months ago
• RayRRT / BOFs

  View on GitHub
  Beacon Object Files (BOFs) for Cobalt Strike and Havoc C2. Implementations of Active Directory attacks and post-exploitation techniques.
  ☆112Jan 26, 2026Updated 2 months ago