kyxiaxiang / TcpNsiKillLinks
Simulate per-process disconnection in red team environments
☆45Updated 3 weeks ago
Alternatives and similar repositories for TcpNsiKill
Users that are interested in TcpNsiKill are comparing it to the libraries listed below
Sorting:
- vehsyscall:a syscall project that may bypass EDR☆58Updated last year
- Self Cleanup in post-ex job☆56Updated 9 months ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem …☆53Updated last year
- more conveniently Visual-Studio-BOF-template☆65Updated last year
- Beacon compiled using clang☆69Updated 2 years ago
- ☆41Updated last year
- ☆26Updated last year
- A Simple PoC☆21Updated last year
- 自定义函数堆栈,从而绕过ETW检测,这个是完整版。☆14Updated last year
- 一个demo☆25Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- shellcode生成框架☆87Updated 11 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆49Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆44Updated last year
- kill AV/EDR☆22Updated 2 years ago
- Code with Windows Hacker☆13Updated 2 years ago
- Binary Hollowing☆77Updated 9 months ago
- Bypass EDR Create TaskServers☆37Updated 2 years ago
- A Blind EDR Project for Educational Purposes☆37Updated 5 months ago
- BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel☆27Updated last year
- 使用kcp实现的socks5正向代理☆13Updated last year
- Rust 重构的 sRDI☆14Updated 9 months ago
- A little tool to play with Windows security☆12Updated last year
- ☆31Updated last year
- A C Implementation for Bypassing Security Software☆26Updated 2 months ago
- IDA Python script for generating Windows x86 shellcode with one click☆37Updated last year
- A packer which adds encrypted shell to protect your PE file☆23Updated 7 months ago
- An implementation of an indirect system call☆129Updated last year
- ☆15Updated 11 months ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆75Updated last year