miunasu / NTR_loaderLinks
Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB获取ntdll和kernel32的地址。
☆81Updated last month
Alternatives and similar repositories for NTR_loader
Users that are interested in NTR_loader are comparing it to the libraries listed below
Sorting:
- 主要用于隐藏进程真实路径,进程带windows真签名☆114Updated 10 months ago
- 通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).☆84Updated 3 years ago
- Hidedump:a lsassdump tools that may bypass EDR☆51Updated last year
- ☆37Updated 2 years ago
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆73Updated 6 months ago
- 利用EFSRPC协议批量探测出网☆65Updated last year
- Zerologon自动化脚本☆95Updated last year
- ☆49Updated 2 years ago
- ☆27Updated 3 years ago
- 一种通过进程注入实现强制关闭部分杀�软进程的方法(以360安全卫士和360杀毒为例)☆138Updated last year
- A cross platform C2/post-exploitation framework☆49Updated 4 months ago
- 根据攻防以及域信息收集经验dump快而有用的域信息☆103Updated 2 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆89Updated last year
- cobaltstrike的BypassUAC、提权dll插件☆84Updated 9 months ago
- ad vulnerability scanner☆72Updated last year
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆62Updated 4 months ago
- 重构Beacon☆161Updated last year
- 绕过defender的完整项目☆34Updated last year
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆38Updated last year
- XOR 加密 分离免杀☆67Updated last year
- ☆46Updated 9 months ago
- CobaltStrike_Cat_And_Dog by CobaltStrike4.5☆25Updated 9 months ago
- 用于解密并加载shellcode,支持RC4和AES两种解密方法,并使用DInvoke来动态调用WinAPI函数,从而尝试绕过某些安全解决方案☆31Updated last year
- mssqlproxy python3.5+ 并修复bug☆64Updated 2 years ago
- ☆34Updated 6 months ago
- ruoyi 后台定时任务注入哥斯拉内存马☆52Updated last year
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Updated 2 years ago
- This is a third party agent for Havoc C2 written in golang.☆58Updated last year
- Shellcode Reductio Entropy Tools☆71Updated last year