uknowsec / CreateServiceLinks
创建服务持久化
☆107Updated 4 years ago
Alternatives and similar repositories for CreateService
Users that are interested in CreateService are comparing it to the libraries listed below
Sorting:
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆148Updated 3 years ago
- Csharp 反射加载dll☆40Updated 3 years ago
- ☆3Updated 2 years ago
- exchange-ssrf-rce☆78Updated 4 years ago
- OXID_Find by Csharp(多线程) 通过OXID解析器获取Windows远程主机上网卡地址 From @RcoIl☆54Updated 4 years ago
- OXID_Find by C++(多线程) 通过OXID解析器获取Windows远程主机上网卡地址☆83Updated 4 years ago
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆149Updated 3 years ago
- CVE-2020-1472 C++☆83Updated 2 years ago
- CrossC2通信协议API实现☆84Updated 3 years ago
- 利用 NTLMSSP 探测 Windows 信息☆168Updated 2 years ago
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆107Updated 4 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆88Updated 3 years ago
- windows pc 端杀毒软件识别(需要tasklist 命令执行的结果)☆43Updated 4 years ago
- https://rcoil.me/2019/09/%E3%80%90%E7%BC%96%E7%A8%8B%E3%80%91SharpDecryptPwd/ 的示例代码☆49Updated 4 years ago
- 使得Cobaltstrike支持Atexec☆88Updated 4 years ago
- hyscan HengGe Team☆68Updated 3 years ago
- CVE-2021-4034, For Webshell Version.☆34Updated 3 years ago
- Add or Delete User via windows api,it can be used when .net is inaccessible.☆38Updated 5 years ago
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago
- 通过NetSessionEnum获取域内机器对应用户☆66Updated 5 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆89Updated 3 years ago
- .net 命令执行的webshell☆98Updated 4 years ago
- ☆93Updated 3 years ago
- 一个cobaltstrike shellcode加载器,过国内主流杀软☆124Updated 4 years ago
- ☆28Updated 5 years ago
- cmd2shellcode☆79Updated 4 years ago
- 内存马持久化☆59Updated 3 years ago
- Python script for auto remove AV☆45Updated 5 years ago
- 动态加解密shellcode并上线☆24Updated 3 years ago
- 记录一下我学习的Win32CPP☆55Updated 3 years ago