seventeenman / SelfDel-BOF
Delete file regardless of whether the handle is used via SetFileInformationByHandle
☆43Updated last year
Alternatives and similar repositories for SelfDel-BOF:
Users that are interested in SelfDel-BOF are comparing it to the libraries listed below
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆73Updated last year
- ☆34Updated last month
- command execute without 445 port☆52Updated 3 years ago
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- 利用EFSRPC协议批量探测出网☆65Updated last year
- ☆31Updated last year
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆66Updated 2 years ago
- ☆49Updated last year
- MSSQL CLR for pentest.☆53Updated last year
- ☆15Updated last year
- ☆22Updated last year
- ☆40Updated last year
- 在cobaltstrike中使用的bof工具集,收集整理验证好用的bof。☆12Updated 3 years ago
- RPC 调用添加ssp扩展dump lsass☆18Updated 2 years ago
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆38Updated 7 months ago
- ☆30Updated 2 years ago
- CrackMapExec extension module/protocol support☆42Updated last year
- ☆46Updated 3 years ago
- AddDefenderExclusions Beacon Object File☆36Updated last year
- Shellcode Reductio Entropy Tools☆66Updated last year
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆86Updated last year
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆32Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆44Updated 2 years ago
- Zerologon自动化脚本☆88Updated last year
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆31Updated 2 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆23Updated 3 years ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆129Updated 2 years ago
- 一个普通的BOF用来BypassUAC☆21Updated last year
- tsh多终端代理通信☆18Updated 2 months ago
- Silently Install Chrome Extension For Persistence☆50Updated 9 months ago