Alternatives and similar repositories for -EventLogEraser-_windows_event_log_study

Users that are interested in -EventLogEraser-_windows_event_log_study are comparing it to the libraries listed below

• y11en / babysc
  自用的shellcode生成框架
  ☆32Updated 2 years ago
• kouzhudong / HidePort
  Hide Port In Windows
  ☆42Updated last year
• y11en / BabyBypass
  看起来叫BabyBypass，实际啥都会记一些
  ☆16Updated 2 years ago
• scareing / UAC_wenpon
  UAC_wenpon
  ☆49Updated 4 years ago
• coleak2021 / PE64shell
  A packer which adds encrypted shell to protect your PE file
  ☆26Updated last year
• howmp / zigshellcode
  ☆17Updated 7 months ago
• crisprss / ProcessPlayer
  一些进程注入或者Shellcode注入的实例代码，用于练习和熟悉
  ☆18Updated 3 years ago
• Knight-of-the-Ebon-Blade / pyhacker
  向pyc中插入python代码或shellcode
  ☆20Updated last year
• huoji120 / sleep_duck_eye
  Stack integrity verification to Detect SleepMask or CallStack Spoofer
  ☆37Updated 5 months ago
• mudebug77 / InjectAssembly
  注入c#控制台到非托管进程
  ☆17Updated 3 years ago
• evilashz / FRP-0.38-DomainFronting
  域前置版本FRP
  ☆16Updated 3 years ago
• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆73Updated 3 years ago
• INotGreen / Nopowershell
  Call the CLR interface from memory to load powershell, process-less powershell
  ☆15Updated 2 years ago
• y11en / lm_tools
  横向移动三剑客 ( Lateral movement tools)
  ☆30Updated 4 years ago
• baiyies / CrossInject
  32 bit process inject shellcode to 32 bit process and 64 bit process
  ☆35Updated 2 years ago
• m-cetin / CVE-2023-29336
  ☆21Updated 2 years ago
• wilszdev / SchtasksUacBypass
  bypass UAC even when configured to always notify user
  ☆29Updated 4 years ago
• Ma1Dong / vcenter_rce
  漏洞利用，Vmware vCenter 6.5-7.0 RCE（CVE-2021-21972），上传冰蝎3，getshell
  ☆13Updated 4 years ago
• howmp / donut_ollvm
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆66Updated 2 months ago
• bestspear / ReBeacon_ForClang
  Beacon compiled using clang
  ☆72Updated 2 years ago
• huoji120 / numen
  简单安排一下 autochk.sys 这个rootkit
  ☆73Updated 2 years ago
• fuluke / Kdmapper-Bypass360
  过360拦截加载无驱动签名
  ☆60Updated 4 years ago
• threatexpert / atrk-win
  针对windows rootkit的一些检测，分别从进程、端口、文件这三个方面进行检测。
  ☆20Updated 10 months ago
• HadesW / power-kill
  power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
  ☆48Updated 4 years ago
• timwhitez / killProcessPOC
  use aswArPot.sys to kill process
  ☆68Updated 3 years ago
• 9bie / exe2shellcode
  Remote Download and Memory Execute for shellcode framework
  ☆96Updated 3 years ago
• uknowsec / ReflectiveDLLInjection-Notes
  ReflectiveDLL学习代码
  ☆35Updated 5 years ago
• knightswd / WindowsHackCode
  Code with Windows Hacker
  ☆12Updated 3 years ago
• Rostelecom-Red-Team / GoodbyeEDR
  ☆80Updated 3 years ago
• evilashz / ProxyAPICall
  Just another version of the custom stack call from Proxy-Function-Calls-For-ETwTI
  ☆34Updated 2 years ago