qi4L / Blackout-go
kill AV/EDR
☆21Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Blackout-go
- vehsyscall:a syscall project that may bypass EDR☆42Updated 8 months ago
- Self Cleanup in post-ex job☆42Updated 2 months ago
- more conveniently Visual-Studio-BOF-template☆53Updated last year
- Binary Hollowing☆53Updated 2 months ago
- A standalone/cmdline BOF runner implemented in pure Go and CGO.☆15Updated 9 months ago
- AddDefenderExclusions Beacon Object File☆31Updated last year
- Shellcode Reductio Entropy Tools☆63Updated last year
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆58Updated 6 months ago
- Rust 重构的 sRDI☆11Updated 2 months ago
- ☆28Updated last year
- ☆38Updated last year
- ☆27Updated last year
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆38Updated last year
- Silently Install Chrome Extension For Persistence☆42Updated 3 months ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆30Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆67Updated last year
- Evasive loader to bypass static detection☆54Updated 9 months ago
- MSSQL CLR for pentest.☆53Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆40Updated last year
- Bypass EDR Create TaskServers☆34Updated last year
- command execute without 445 port☆51Updated 2 years ago
- Efficient RAT signature locator for bypassing AV/EDR, supporting static scanning and memory scanning.☆15Updated 2 weeks ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆66Updated 2 years ago
- 自定义函数堆栈,从而绕过ETW检测,这个是完整版。☆10Updated 6 months ago
- 一个demo☆23Updated 7 months ago
- ☆21Updated 11 months ago
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆32Updated last year
- TeamServer and Client of Exploration Command and Control Framework☆34Updated this week
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆54Updated 8 months ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆123Updated last year