The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层驱动的开发、维护和兼容性问题,让其可以专注于业务开发
☆373Feb 19, 2025Updated last year
Alternatives and similar repositories for iMonitorSDK
Users that are interested in iMonitorSDK are comparing it to the libraries listed below
Sorting:
- iMonitor(冰镜 - 终端行为分析系统)☆821Feb 1, 2026Updated last month
- iDefender - The Infinite Potential Host Intrusion Prevention System (HIPS) & Real-time Endpoint Detection and Response for Home☆304Feb 9, 2026Updated 3 weeks ago
- 戎码之眼是一个window上的基于att&ck模型的威胁监控�工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆536Oct 25, 2023Updated 2 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆294Jul 25, 2021Updated 4 years ago
- Hades HIDS/HIPS for Windows☆307Oct 10, 2025Updated 4 months ago
- 检测绝大部分所谓的内存免杀马�☆735Sep 15, 2022Updated 3 years ago
- 红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。☆366Jun 19, 2024Updated last year
- It's a minifilter used for transparent-encrypting.☆343Jul 28, 2025Updated 7 months ago
- OrcaC2是一款基于Websocket加密通信的多功能C&C框架,使用Golang实现。☆676Dec 30, 2022Updated 3 years ago
- 恶意代码逃逸源代码 http://payloads.online☆758Mar 7, 2022Updated 4 years ago
- Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具,它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的…☆929Jan 7, 2026Updated 2 months ago
- 使用windows api添加用户,可用于net无法使用时.分为nim版,c++版本,RDI版,BOF版。☆421Sep 29, 2021Updated 4 years ago
- 这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具,用于节省红队工作量,通过下载浏览器数据库、记录密钥来离线解密浏览器密码。☆638Apr 4, 2021Updated 4 years ago
- Play Doh Windows ACL Tools☆64Sep 7, 2022Updated 3 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆182Aug 26, 2022Updated 3 years ago
- Linux C2 框架demo,为期2周的”黑客编程马拉松“,从学习编程语言开始到实现一个demo的产物☆223Dec 8, 2022Updated 3 years ago
- ☆174Sep 9, 2020Updated 5 years ago
- 安全、快捷、高交互、企业级的蜜罐管理系统,护网;支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…☆1,271Oct 17, 2023Updated 2 years ago
- Linux下用于远程加载可执行文件以达到内存加载的目的☆202Nov 9, 2022Updated 3 years ago
- Windows对抗沙箱和虚拟机的方法总结☆401Apr 22, 2020Updated 5 years ago
- 基于亚马逊S3\阿里云OSS\腾讯COS通信隧道的远程管理工具☆328Oct 10, 2020Updated 5 years ago
- 基于golang实现的impacket☆246Aug 28, 2023Updated 2 years ago
- 过去写的一些Windows安全研究相关代码☆135Feb 2, 2019Updated 7 years ago
- 利用NTLM Hash读取Exchange邮件☆441Jan 7, 2025Updated last year
- 通过WindowsAPI获取用户凭证,并保存到文件中☆195Jun 18, 2024Updated last year
- 绕3环的shellcode免杀框架☆574Mar 19, 2021Updated 4 years ago
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,261Jul 8, 2023Updated 2 years ago
- Windows CVE主防(HIPS/HIDS)☆57Apr 29, 2021Updated 4 years ago
- sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆716Aug 3, 2021Updated 4 years ago
- Security product hook detection☆327Mar 30, 2021Updated 4 years ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,578Updated this week
- 内网域渗透小工具☆734Apr 20, 2021Updated 4 years ago
- 主流供应商的一些攻击性漏洞汇总☆809Nov 8, 2021Updated 4 years ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆731Sep 1, 2021Updated 4 years ago
- 通过 Redis 主从写出无损文件☆719May 25, 2020Updated 5 years ago
- ☆56Nov 21, 2022Updated 3 years ago
- ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。☆1,634Jun 16, 2024Updated last year
- shellcodeloader☆1,747Dec 11, 2020Updated 5 years ago