利用图形化识别技术快速关闭目标机器上的杀毒软件

免杀技术大杂烩---乱拳也打不死老师傅

A protective and Low Level Shellcode Loader that defeats modern EDR systems.

LSASS memory dumper using direct system calls and API unhooking.

AV/EDR evasion via direct system calls.

This is a **WIP** tool that performs shellcode obfuscation in x86 instruction set.

OpenSSL-based Authenticode signing for PE, CAB, CAT, MSI, APPX, and script file

A tool for generating fake code signing certificates or signing real ones

EXE-to-VBS converter

PE Injection、DLL Injection、Process Injection、Thread Injection、Code Injection、Shellcode Injection、ELF Injection、Dylib Injection, including 400+Tools and 350+posts

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Shellcode wrapper with encryption for multiple target languages

掩日 - 免杀执行器生成工具

具备对PE文件添加区段、添加花指令、对代码段加密、修复重定位、加密IAT等功能

A Simple demonstration of manual dll injector

Anti AntiVirus + Obfuscator - make any file undetectable.

AV Evasion Tool For Red Team Ops

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

将shellcode用rsa加密并动态编译exe，自带几种反沙箱技术。

Tool for leaking and bypassing Android malware detection system

VM一键加壳/脱壳，全压缩，反调试等

PE 文件病毒编写

Library to load a DLL from memory.

恶意代码逃逸源代码 http://payloads.online

pyJoiner - Exe Joiner (Kali Linux Version i386)

pyJoiner Exe Joiner (Windows Version)

EncodeFiles(base^4)

My musings with PowerShell

UPX - the Ultimate Packer for eXecutables

Binaries, PowerShell scripts and information about Digital Signature Hijacking.