Repository navigation
shellcode-loader
- Website
- Wikipedia
A protective and Low Level Shellcode Loader that defeats modern EDR systems.
shellcode免杀加载器,使用go实现,免杀bypass火绒、360、核晶、def等主流杀软
Evasive shellcode loader for bypassing event-based injection detection (PoC)
助力每一位RT队员,快速生成免杀木马
MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
免杀,bypassav,免杀框架,nim,shellcode,使用nim编写的shellcode加载器
windows-rs shellcode loaders
将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密
🎃 PumpBin is an Implant Generation Platform.
Stealthily inject shellcode into an executable
python写的一款免杀工具(shellcode加载器)BypassAV,国内杀软全过(windows denfend)2021-9-13
Open repository for learning dynamic shellcode loading (sample in many programming languages)
Malware indetectable, with AV bypass techniques, anti-disassembly, etc.
This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.
Resources About Shellcode
The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls
nim,免杀,红队,shellcode,bypass,apt,bypass-av.