Alternatives and similar repositories for OffsetBypassAv

Users that are interested in OffsetBypassAv are comparing it to the libraries listed below

• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆68Updated 2 years ago
• Ryze-T / EdrKiller
  ☆92Updated 4 years ago
• TryGOTry / C2_Demo
  golang+c#乱写了一个基于http的垃圾远控(支持团队协同作战,功能很少)(三端)
  ☆43Updated 3 years ago
• M0nster3 / ITaskServers
  Bypass EDR Create TaskServers
  ☆37Updated 2 years ago
• Cc28256 / HijackScan
  白文件扫描器 非公开
  ☆28Updated 4 years ago
• txluck / xor-shellcode-and-ppid-spoofing
  异或shellcode和ppid欺骗免杀
  ☆14Updated 3 years ago
• determinasc / SysWhispers3WinHttp
  SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译，文件大小14KB，可免杀绕过360核晶防护与Defender
  ☆32Updated 2 years ago
• evilashz / Visual-Studio-BOF-template
  more conveniently Visual-Studio-BOF-template
  ☆69Updated last year
• fuluke / Kdmapper-Bypass360
  过360拦截加载无驱动签名
  ☆60Updated 3 years ago
• kyxiaxiang / CrackSleeve4.5
  CobaltStrike4.5 Sleeve解密文件，搬砖加一点点修改, 仅作备份使用.
  ☆34Updated 3 years ago
• dust-life / run_pe
  ☆50Updated 4 years ago
• 9bie / exe2shellcode
  Remote Download and Memory Execute for shellcode framework
  ☆93Updated 2 years ago
• Rvn0xsy / Invoke-x64dbg-loaddll
  调用x64dbg中的loadll.exe白加黑示例代码
  ☆63Updated last year
• xf555er / Shellcode_SeparationLoad
  通过文件加载和远程URL加载方式实现Shellcode分离加载
  ☆31Updated 2 years ago
• HadesW / power-kill
  power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
  ☆48Updated 3 years ago
• ac0d3r / 0xpe
  [windows]pe -> shellcode -> shellcodeLoader -> (pe2shellcode go on?)
  ☆77Updated 3 years ago
• Rvn0xsy / ZeroLogon
  CVE-2020-1472 C++
  ☆83Updated 2 years ago
• Rvn0xsy / GetWindowsCredentials
  通过WindowsAPI获取用户凭证，并保存到文件中
  ☆194Updated last year
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• coleak2021 / vehsyscall
  vehsyscall:a syscall project that may bypass EDR
  ☆58Updated last year
• seventeenman / SelfDel-BOF
  Delete file regardless of whether the handle is used via SetFileInformationByHandle
  ☆49Updated 2 years ago
• BambiZombie / StagerDemo
  一个demo
  ☆24Updated last year
• yutianqaq / x1Ldr
  XOR 加密 分离免杀
  ☆67Updated last year
• yanghaoi / CVE-2020-0787
  CVE-2020-0787的简单回显
  ☆31Updated 3 years ago
• timwhitez / ReturnGate
  ReturnGate, just like HellsGate.
  ☆68Updated 3 years ago
• howmp / donut_ollvm
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆54Updated last year
• 9bie / iatHijackGenerate
  白加黑的快速生成器（针对IAT类型）
  ☆105Updated 2 years ago
• c1y2m3 / SimpleShellcode
  利用图片隐写术来远程动态加载shellcode
  ☆97Updated 2 years ago
• badboycxcc / Beacon
  重构Beacon
  ☆15Updated last year
• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆78Updated 2 years ago