Skip to content

Commit

Permalink
add some tool
Browse files Browse the repository at this point in the history
  • Loading branch information
@jenaye
jenaye committed Dec 11, 2023
1 parent 4d57faa commit d3bb94c
Show file tree
Hide file tree
Showing 2 changed files with 13 additions and 5 deletions.
16 changes: 12 additions & 4 deletions Bypass-AV.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,10 @@ markmap:
2. moving shellcode into that memory
3. executing the shellcode

### Go

- <https://djnn.sh/what-i-learned-writing-a-loader-in-golang>

### C

-
Expand Down Expand Up @@ -67,7 +71,7 @@ markmap:
### C
- <https://github.com/CMEPW/Selha/blob/main/C/aes-loader-stageless.c>
- <https://github.com/matro7sh/Selha/blob/main/C/aes-loader-stageless.c>
- <https://github.com/cribdragg3r/Alaris>
- <https://github.com/trustedsec/COFFLoader>
- <https://github.com/stephenfewer/ReflectiveDLLInjection>
Expand All @@ -80,12 +84,13 @@ markmap:
- <https://github.com/aeverj/NimShellCodeLoader>
- <https://github.com/sh3d0ww01f/nim_shellloader>
- <https://github.com/S3cur3Th1sSh1t/Nim-RunPE>
- <https://github.com/xl00t/yetAnotherNimCrypt>
### Go
- <https://github.com/CMEPW/myph>
- <https://github.com/matro7sh/myph>
- <https://github.com/matro7sh/221b>
- <https://github.com/EddieIvan01/gld>
- <https://github.com/zha0gongz1/DesertFox>
- <https://djnn.sh/what-i-learned-writing-a-loader-in-golang>
- <https://github.com/Ne0nd0g/go-shellcode>
- <https://github.com/f1zm0/hades>
Expand Down Expand Up @@ -295,7 +300,7 @@ markmap:
### Hardware
- CPUID timing
- <https://github.com/CMEPW/bof-collection/blob/main/src/checkVM/checkVM2.c>
- <https://github.com/matro7sh/bof-collection/blob/main/src/checkVM/checkVM2.c>
- Typical user workstation has a processor with at least 2 cores, a minimum of 2 GB of RAM and a 100 GB hard drive
### OSX
Expand All @@ -312,6 +317,9 @@ markmap:
- <https://github.com/hasherezade/pe_to_shellcode>
- <https://github.com/monoxgas/sRDI>
## From .exe (build with .net) to .exe hidden
- <https://github.com/mkaring/ConfuserEx/releases/tag/v1.6.0>
## From alive beacon
### Havoc
Expand Down
2 changes: 1 addition & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ This map lists the essential techniques to bypass anti-virus and EDR

## Edit the Markdown / HTML version

[Bypass-AV.md](Bypass-AV.md) is made using [MarkMap](https://markmap.js.org/). You can preview it online at [cmepw.github.io/BypassAV](https://cmepw.github.io/BypassAV/).
[Bypass-AV.md](Bypass-AV.md) is made using [MarkMap](https://markmap.js.org/). You can preview it online at [matro7sh.github.io/BypassAV](matro7sh.github.io/BypassAV/).

You can edit / preview it with some plugins:

Expand Down

0 comments on commit d3bb94c

Please sign in to comment.