txluck / xor-shellcode-and-ppid-spoofingLinks
异或shellcode和ppid欺骗免杀
☆14Updated 3 years ago
Alternatives and similar repositories for xor-shellcode-and-ppid-spoofing
Users that are interested in xor-shellcode-and-ppid-spoofing are comparing it to the libraries listed below
Sorting:
- Bypass EDR Create TaskServers☆38Updated 3 years ago
- 在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。☆33Updated 3 years ago
- ☆49Updated 2 years ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆34Updated 3 years ago
- command execute without 445 port☆57Updated 3 years ago
- ☆15Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Updated 2 years ago
- 导出coremail联系人☆18Updated 2 years ago
- CrackMapExec extension module/protocol support☆42Updated 2 years ago
- ☆22Updated 2 years ago
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆59Updated 3 years ago
- 一个2020年练手的基于gin框架搞的在线免杀平台,支持后台管理,邀请码注册等☆39Updated last year
- CVE-2020-1472 C++☆84Updated 3 years ago
- kill windows log☆45Updated last year
- ☆24Updated 3 years ago
- 重构Beacon☆15Updated last year
- 密码收集☆58Updated 3 years ago
- ☆36Updated 10 months ago
- dump lsass☆37Updated 3 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆55Updated 2 years ago
- ☆46Updated 4 years ago
- ☆31Updated 2 years ago
- RPC 调用添加ssp扩展dump lsass☆23Updated 3 years ago
- Cobalt Strike BOF that Add an admin user☆78Updated 3 years ago
- 将PE文件进行AES加密,然后从远程拉取加载内存中实现免杀☆37Updated 2 years ago
- Lsass memory dump.☆54Updated 2 years ago
- 利用RPC服务,内网批量探测Windows出网☆14Updated 3 years ago
- 利用EFSRPC协议批量探测出网☆67Updated 2 years ago
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆34Updated 6 months ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆73Updated 3 years ago