BYOVD: Use 360 WFP driver to block EDR/XDR network connection.
☆125Feb 10, 2026Updated 4 months ago
Alternatives and similar repositories for 360WFP_Exploit
Users that are interested in 360WFP_Exploit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Enable EFS service as low priv user (PE & BOF)☆21Jul 6, 2025Updated 11 months ago
- Linux Shared Library to Shellcode Loader☆97Feb 15, 2026Updated 4 months ago
- Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames☆154Nov 23, 2025Updated 6 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆160Mar 26, 2025Updated last year
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆65Jun 23, 2025Updated 11 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Overview of MS Defender☆143Feb 20, 2026Updated 3 months ago
- DLL injection with Microsoft detours☆24Dec 9, 2025Updated 6 months ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆81Apr 13, 2025Updated last year
- Go-based C2 server inspired by Cobalt Strike; seamless agent control, web UI, and Malleable Profile support. Fast, extensible, and secure…☆33Updated this week
- ☆127Sep 1, 2024Updated last year
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆154Apr 18, 2025Updated last year
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 7 months ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆193May 23, 2026Updated 3 weeks ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆189Jan 17, 2026Updated 4 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Slides for COM Hijacking AV/EDR Talk on 38c3☆75Jan 3, 2025Updated last year
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated 2 years ago
- Vectored Exception Handling Squared☆30Dec 27, 2025Updated 5 months ago
- BypassCredGuard CS BOF☆54Jan 23, 2025Updated last year
- "Service-less" driver loading☆188Nov 28, 2024Updated last year
- A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, wit…☆296Feb 21, 2026Updated 3 months ago
- CVE-2024-40711-exp☆43Oct 17, 2024Updated last year
- sigreturn-oriented(SROP) based sleep obfuscation poc for Linux☆70Dec 15, 2025Updated 6 months ago
- Dumping LSASS Evaded Endpoint Security Solutions☆18Feb 15, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A beacon object file implementation of PoolParty Process Injection Technique.☆451Dec 21, 2023Updated 2 years ago
- RunPE implementation with multiple evasive techniques (2)☆282Sep 25, 2025Updated 8 months ago
- Monitoring tool to detect patterns or IOCs (strings, regex, VirusTotal) and alert you and your team via console, Telegram or SMS written …☆18Feb 17, 2026Updated 3 months ago
- ☆150Mar 22, 2024Updated 2 years ago
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.☆162Apr 15, 2026Updated 2 months ago
- Bypass user-land hooks by syscall tampering via the Trap Flag☆140Aug 25, 2025Updated 9 months ago
- ☆14Dec 26, 2024Updated last year
- early cascade injection PoC based on Outflanks blog post☆239Nov 7, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆44Dec 7, 2025Updated 6 months ago
- Go实现用于Windows系统的进程隐藏工具,通过DLL注入技术将指定进程从任务管理器中隐藏☆28Jan 22, 2026Updated 4 months ago
- UDC2 implementation that provides an ICMP C2 channel☆123Nov 24, 2025Updated 6 months ago
- Linux Process Injection via Seccomp Notifier☆95Dec 9, 2025Updated 6 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆55May 12, 2025Updated last year
- ☆85Feb 12, 2026Updated 4 months ago
- Beacon Debugger☆56Oct 28, 2024Updated last year