yanghaoi / ridhijackLinks
通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).
☆84Updated 3 years ago
Alternatives and similar repositories for ridhijack
Users that are interested in ridhijack are comparing it to the libraries listed below
Sorting:
- 主要用于隐藏进程真实路径,进程带windows真签名☆114Updated last year
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Updated 2 years ago
- ☆27Updated 3 years ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆137Updated last year
- 收集云沙箱上线C2的ip,如微X、奇XX、3X0、virustX等☆125Updated 2 years ago
- 常用功能的DLL插件☆85Updated last month
- Zerologon自动化脚本☆96Updated 2 years ago
- Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具☆109Updated 2 years ago
- 集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集☆87Updated last year
- 根据攻防以及域信息收集经验dump快而有用的域信息☆102Updated 2 years ago
- Zerologon exploit with restore DC password automatically☆140Updated last year
- 提取域控日志,支持远程提取☆168Updated 7 months ago
- AutoGeaconC2: 一键读取Profile自动化生成geacon实现跨平台上线CobaltStrike☆142Updated last year
- CS shellcode 加载器☆61Updated 3 years ago
- Hidedump:a lsassdump tools that may bypass EDR☆50Updated last year
- dogxss(基于Go-admin框架和ezxss_payload完成):ezxss的Golang版本.☆82Updated 2 years ago
- 绕过defender的完整项目☆34Updated last year
- 通过端口复用直接进行正向socks5代理(非防火墙分流)☆111Updated 10 months ago
- 远程创建任务计划工具☆190Updated 3 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不 使用PEB…☆82Updated 2 months ago
- FTP lnk调用pythonw程序,用于攻防钓鱼场景下免杀运行捆绑木马文件☆69Updated last year
- 记录ssh或sudo明文密码☆38Updated 3 years ago
- Cobalt Strike random C2 Profile 修改版(适配腾讯云函数,亚马逊云函数和CrossC2自定义protocol)☆90Updated 2 years ago
- ☆49Updated 2 years ago
- Callback Function Loader Implemented in Go☆140Updated last year
- ASPX内存执行shellcode,绕过Windows Defender(AV/EDR)☆126Updated last year
- 一键出网探测工具☆73Updated 2 years ago
- 重构Beacon☆161Updated last year
- 密码收集☆58Updated 3 years ago
- 钓鱼上线后渗透工具☆132Updated 2 years ago