☆36Sep 7, 2020Updated 5 years ago
Alternatives and similar repositories for ImgLoaderShellCode
Users that are interested in ImgLoaderShellCode are comparing it to the libraries listed below
Sorting:
- inject shellcode into remote process via message hook☆15Oct 28, 2020Updated 5 years ago
- ☆16May 14, 2021Updated 4 years ago
- Shellcode antivirus evasion framework☆27Jan 16, 2021Updated 5 years ago
- gxor程序根据输入的二进制文件进行异或运算输出☆22Sep 13, 2021Updated 4 years ago
- 创建服务持久化☆108Apr 26, 2021Updated 4 years ago
- ☆74Jul 23, 2021Updated 4 years ago
- 后渗透持久化控制平台; Windows Persistence Platform;☆46Sep 16, 2021Updated 4 years ago
- 过去写的一些Windows安全研究相关代码☆135Feb 2, 2019Updated 7 years ago
- EDR Evasion - Combination of SwampThing - TikiTorch☆29May 28, 2020Updated 5 years ago
- Some crazy PE executables protection kernel driver☆20May 2, 2020Updated 5 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆62Nov 18, 2020Updated 5 years ago
- Terminate the eventlog thread to disable the windows eventlog☆21Apr 1, 2020Updated 5 years ago
- 使得Cobaltstrike支持Atexec☆89Jun 30, 2020Updated 5 years ago
- Analysing and defeating PatchGuard universally☆36Nov 4, 2020Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆104May 14, 2020Updated 5 years ago
- 红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。☆366Jun 19, 2024Updated last year
- C# .net Memory Tool library☆13Sep 21, 2022Updated 3 years ago
- creddump bypass AV☆42Nov 6, 2020Updated 5 years ago
- 绕3环的shellcode免杀框架☆574Mar 19, 2021Updated 4 years ago
- APC DLL Injector with NtQueueApcThread and wake up thread support☆49Sep 21, 2017Updated 8 years ago
- c++ shellcode loader☆41Aug 18, 2022Updated 3 years ago
- Bypass AMSI and Executing PowerShell scripts from C# - using CyberArk's method to bypass AMSI☆31Feb 22, 2020Updated 6 years ago
- Windows system spy for Mouse, Keyboard and Gamepad(Joystick).☆15Jul 6, 2022Updated 3 years ago
- PoC code for CVE-2020-16939 Windows Group Policy DACL Overwrite Privilege Escalation☆12Oct 27, 2020Updated 5 years ago
- A windows kernel driver to Block symbolic link exploit used for privilege escalation.☆15Jul 30, 2020Updated 5 years ago
- This is a random process injector, and more injection techniques will be added in the future.☆13Jul 17, 2020Updated 5 years ago
- OXID_Find by C++(多线程) 通过OXID解析器获取Windows远程主机上网卡地址☆89Jul 19, 2020Updated 5 years ago
- decrypt rdp credentials to password using mimikatz.☆28Dec 18, 2020Updated 5 years ago
- ☆52Dec 11, 2019Updated 6 years ago
- Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon☆223Dec 5, 2020Updated 5 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Jan 23, 2018Updated 8 years ago
- Wechat PC Open More [PC 微信 多开 Demo]☆10Dec 20, 2018Updated 7 years ago
- P2C Loader based on blackbone, used by isolation.top and others.☆13Jan 2, 2018Updated 8 years ago
- Web ExternalC2 Demo☆52Aug 18, 2020Updated 5 years ago
- This project demonstares an illegal read- and write- access to the kernel-mode data for both allocated by 3rd party drivers and EPROCESS …☆13Mar 6, 2018Updated 7 years ago
- e-mesaage <=4.15 后台jar包上传exp☆47Mar 15, 2019Updated 6 years ago
- 通过webshell实现的内网穿透工具☆49Nov 19, 2019Updated 6 years ago
- ☆32Jul 2, 2020Updated 5 years ago
- 一个全新的敏感文件发现工具☆225Jan 10, 2021Updated 5 years ago