2 个仓库
Utilities that parse external shellcode and wrap it into executable commands for direct memory injection.
Distinct from Multi-Format Shellcode Exporters: Distinct from exporters: this imports existing shellcode and wraps it for execution, whereas exporters output shellcode in various formats.
Explore 2 awesome GitHub repositories matching operating systems & systems programming · Shellcode Injection Wrappers. Refine with filters or upvote what's useful.
Unicorn 是一个用于生成恶意 HTA 文件、VBA 宏、编码 PowerShell 命令和内存驻留 shellcode 注入框架的工具集合。它提供工具来创建旨在通过绕过安全控制来实现远程代码执行的有效载荷。 该项目专注于通过 VBA 宏和公式武器化 Office 文档、生成 HTA 攻击向量以及创建编码的 PowerShell 有效载荷。它包括一个 shellcode 注入框架,用于包装外部 shellcode 以在系统内存中直接执行。 该工具包涵盖了用于基于证书的文件传输的二进制转 Base64 转换,以及避免基于磁盘检测的方法。它还包括用于 PowerShell 脚本编码和版本降级攻击的功能,以绕过执行策略和安全限制。
Parses formatted shellcode exports to wrap them into injection commands for direct execution in memory.
Phantom-Evasion is a security research framework designed for generating obfuscated payloads and automating post-exploitation tasks during authorized security assessments. It provides a suite of utilities for creating custom executables and libraries intended to test the effectiveness of antivirus and endpoint security detection systems. The framework distinguishes itself through a focus on memory-resident operations, allowing for the execution of encrypted binaries and shellcode directly within system memory. By utilizing techniques such as junk code injection, payload encryption, and remote
Injects and executes custom shellcode within local or remote processes to maintain stealth during security operations.