timwhitez / BinHolLinks
Binary Hollowing
☆78Updated 11 months ago
Alternatives and similar repositories for BinHol
Users that are interested in BinHol are comparing it to the libraries listed below
Sorting:
- beta☆118Updated 11 months ago
- more conveniently Visual-Studio-BOF-template☆68Updated last year
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆73Updated 5 months ago
- PE to shellcode☆27Updated 7 months ago
- 白文件patch☆20Updated last year
- 基于个人习惯使用C/C++的shellcode开发项目模板☆49Updated last year
- 重构Beacon☆160Updated last year
- Shellcode Reductio Entropy Tools☆71Updated last year
- 主要用于隐藏进程真实路径,进程带windows真签名☆114Updated 10 months ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆137Updated last year
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- A Blind EDR Project for Educational Purposes☆47Updated 7 months ago
- This is a third party agent for Havoc C2 written in golang.☆58Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Updated 2 years ago
- vehsyscall:a syscall project that may bypass EDR☆58Updated last year
- Beta Linker☆20Updated last year
- File entropy calculator - Golang☆28Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆54Updated last year
- ☆46Updated 8 months ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆49Updated 2 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆80Updated 3 weeks ago
- Hidedump:a lsassdump tools that may bypass EDR☆51Updated last year
- Take a screenshot without injection for Cobalt Strike☆197Updated 2 years ago
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆89Updated 2 years ago
- go实现的shellcode免杀加载器,实测时可过火绒,360。当前效果请自行评判。☆40Updated 11 months ago
- Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring☆62Updated 4 months ago
- A cross platform C2/post-exploitation framework☆49Updated 4 months ago
- mssqlproxy python3.5+ 并修复bug☆64Updated 2 years ago
- ☆35Updated 2 years ago
- Self Cleanup in post-ex job☆58Updated 11 months ago