BYOVD: Use 360 WFP driver to block EDR/XDR network connection.
☆122Feb 10, 2026Updated 3 months ago
Alternatives and similar repositories for 360WFP_Exploit
Users that are interested in 360WFP_Exploit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Enable EFS service as low priv user (PE & BOF)☆21Jul 6, 2025Updated 10 months ago
- Linux Shared Library to Shellcode Loader☆97Feb 15, 2026Updated 3 months ago
- Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames☆155Nov 23, 2025Updated 6 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆160Mar 26, 2025Updated last year
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆65Jun 23, 2025Updated 11 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Overview of MS Defender☆141Feb 20, 2026Updated 3 months ago
- DLL injection with Microsoft detours☆23Dec 9, 2025Updated 5 months ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆80Apr 13, 2025Updated last year
- Go-based C2 server inspired by Cobalt Strike; seamless agent control, web UI, and Malleable Profile support. Fast, extensible, and secure…☆29Updated this week
- ☆127Sep 1, 2024Updated last year
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆154Apr 18, 2025Updated last year
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 6 months ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆189Updated this week
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆192Jan 17, 2026Updated 4 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Slides for COM Hijacking AV/EDR Talk on 38c3☆75Jan 3, 2025Updated last year
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated 2 years ago
- Vectored Exception Handling Squared☆30Dec 27, 2025Updated 4 months ago
- BypassCredGuard CS BOF☆54Jan 23, 2025Updated last year
- A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, wit…☆296Feb 21, 2026Updated 3 months ago
- "Service-less" driver loading☆187Nov 28, 2024Updated last year
- CVE-2024-40711-exp☆43Oct 17, 2024Updated last year
- sigreturn-oriented(SROP) based sleep obfuscation poc for Linux☆69Dec 15, 2025Updated 5 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆449Dec 21, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Dumping LSASS Evaded Endpoint Security Solutions☆18Feb 15, 2025Updated last year
- RunPE implementation with multiple evasive techniques (2)☆281Sep 25, 2025Updated 8 months ago
- Monitoring tool to detect patterns or IOCs (strings, regex, VirusTotal) and alert you and your team via console, Telegram or SMS written …☆18Feb 17, 2026Updated 3 months ago
- Rusty Ekko - Sleep Obfuscation in Rust☆10Mar 10, 2023Updated 3 years ago
- ☆150Mar 22, 2024Updated 2 years ago
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.☆153Apr 15, 2026Updated last month
- Bypass user-land hooks by syscall tampering via the Trap Flag☆139Aug 25, 2025Updated 9 months ago
- ☆14Dec 26, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- early cascade injection PoC based on Outflanks blog post☆242Nov 7, 2024Updated last year
- ☆85Feb 12, 2026Updated 3 months ago
- Go实现用于Windows系统的进程隐藏工具,通过DLL注入技术将指定进程从任务管理器中隐藏☆27Jan 22, 2026Updated 4 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆45Dec 7, 2025Updated 5 months ago
- Linux Process Injection via Seccomp Notifier☆96Dec 9, 2025Updated 5 months ago
- UDC2 implementation that provides an ICMP C2 channel☆124Nov 24, 2025Updated 6 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆55May 12, 2025Updated last year