qigpig / Ghosting-BOFView external linksLinks
主要用于隐藏进程真实路径,进程带windows真签名
☆119Oct 15, 2024Updated last year
Alternatives and similar repositories for Ghosting-BOF
Users that are interested in Ghosting-BOF are comparing it to the libraries listed below
Sorting:
- Automated Hosting Information Hunting Tool - Windows 主机信息自动化狩猎工具☆552Apr 15, 2025Updated 9 months ago
- 一款基于PE Patch技术的后渗透免杀工具,主要支持x64☆354Mar 5, 2025Updated 11 months ago
- 一键修改exe、dll的编译时间、创建时间、修改时间和访问时间☆197Apr 16, 2023Updated 2 years ago
- grs内网穿透工具通过reality协议隐藏特征☆611Dec 4, 2025Updated 2 months ago
- 通过Dump内存读取ToDesk设备代码、连接密码☆243Sep 9, 2024Updated last year
- 寻找可利用的白文件☆556Aug 18, 2025Updated 5 months ago
- 一键提取exe的图标、嵌入图标、资源信息、版本信息、修改时间、数字签名,降低程序熵值☆432Dec 17, 2024Updated last year
- 入侵痕迹清理/Cleaning up traces of intrusion☆243Nov 6, 2024Updated last year
- 重构Beacon☆164Aug 19, 2024Updated last year
- Pillager是一个适用于后渗透期间的信息收集工具☆1,266Sep 7, 2024Updated last year
- 自动化找白文件,用于扫描 EXE 文件的导入表,列出导入的DLL文件,并筛选出非系统DLL,符合条件的文件将被复制到特定的 X64 或 X86 文件夹☆563Dec 14, 2025Updated 2 months ago
- Take a screenshot without injection for Cobalt Strike☆203Jun 7, 2023Updated 2 years ago
- 一个普通的BOF用来BypassUAC☆22Apr 6, 2024Updated last year
- 添加计划任务方法集合☆309Aug 6, 2023Updated 2 years ago
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆450Mar 11, 2024Updated last year
- Bypass YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellcode sequences.☆52Oct 2, 2025Updated 4 months ago
- 一款Java内存马生成、测试工具,搭配@ax1sX的MemShell食用。☆260Jul 4, 2024Updated last year
- golang 实现的windows and linux 端口复用工具。☆309Jan 30, 2024Updated 2 years ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆138Dec 26, 2023Updated 2 years ago
- 综合后渗透方面的杂烩☆575Apr 22, 2025Updated 9 months ago
- 一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。☆788Nov 15, 2024Updated last year
- 某软最新公开gadgegt,新加入不出网利用。☆89Sep 6, 2024Updated last year
- 常用功能的DLL插件☆86Sep 24, 2025Updated 4 months ago
- Rust 重构的 sRDI☆17Sep 9, 2024Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆69Oct 10, 2025Updated 4 months ago
- Get sql server connection configuration information☆28Aug 26, 2024Updated last year
- 内网资产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破(SSH、SMB、MsSQL等)、Socks代理,一键自动化+无文件落地扫描☆470Nov 20, 2024Updated last year
- 向日葵密码提取、todesk密码提取,ID、临时密码,安全密码读取工具☆341Oct 29, 2024Updated last year
- xxl-job内存马☆226Jan 26, 2025Updated last year
- 使用Visral Studio开发ShellCode☆234Oct 11, 2023Updated 2 years ago
- vcenter图形化漏洞利用工具☆70Nov 17, 2024Updated last year
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆181Aug 3, 2024Updated last year
- 一个半自动化springboot打点工具,内置目前springboot所有漏洞☆775Sep 30, 2025Updated 4 months ago
- 绕过杀软dumphash 离线读取☆152Nov 6, 2024Updated last year
- ☆25Dec 13, 2024Updated last year
- 一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.☆557May 30, 2025Updated 8 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆13Feb 4, 2024Updated 2 years ago
- 轻量级的 Active Directory 枚举工具,用于收集域环境中的信息☆88Mar 22, 2025Updated 10 months ago
- 哥斯拉Hikvision综合安防后渗透插件,运行中心/web前台/MinIO 配置提取(解密)重置密码,还原密码。☆168Oct 8, 2024Updated last year