nydubh3 / cuiri Goto Github PK
View Code? Open in Web Editor NEW一款红队专用免杀木马生成器,基于shellcode生成绕过所有杀软的木马。
License: Apache License 2.0
cuiri's People
Stargazers
Watchers
Forkers
tony163163 hwr33 j5s toolsec prettyrecon jeromeyoung determinasc blucewan empty2081 whale3070 xiaye1116 lemonnew ice-001 asdlei99 0xhelium kenuosec hhhhelix kosakd phuong39 afwu 0ps 1amfine2333 sesyi hackdou whoamiecho 0x0034 douglas88 libaizaishuijiao cross2to yibit landlordlycat qsdj nooea crisprss fengjixuchui genioco radbsie dayutry orgyia aqimmm hel10-web lawsxxx man008 wendingzhongyuan zhb-web mk4t1xp polarpeak harry1080 5l1v3r1 htts3at xiaoaliha want2live233 yyming-sudo dk47os3r geegeegogogo ddostest123 zcd124 evi1hack ruanzy506 whitesharks qaz7791869 jeketchen gkfnf wuxueeee metah4ck gysf666 d0ngs3c jingtai123 xiumulty anzu-proj 1h32xb5 sry309 wha000tif 2dou ilovecode2018 b1gd0g zzhsec m0tky m00nt0 alohajerrys ifr4me do0x-ccc pphuahua yyyxq248 col4-eng blackgit2 p0llock st0new showsmall huddhudd honshow doublefast ctr1hub z0edff0x3d landv yanci-tut mortals-tx huifeidebaba 4sh3s yougar0cuiri's Issues
请问下原理是啥?
看到代码中
VirtualAlloc.Call(0, uintptr(len(shellcode)), MEM_COMMIT|MEM_RESERVE, PAGE_EXECUTE_READWRITE设置可执行权限这步杀软为何不拦截?
免杀后CS貌似上不了线
kali生成的免杀时候的域名需要加http或https吗?
不知道为什么总是生成不了
把杀毒全关掉了,可是会这样提示
cs要用什么版本,我的是4.0生成出来的payload,用工具报错
panic: runtime error: invalid memory address or nil pointer dereference
[signal 0xc0000005 code=0x0 addr=0x50 pc=0xc6d77e]
goroutine 1 [running]:
github.com/goretk/gore/gosym.(*Table).GetGo12(...)
/home/runner/work/go-strip-source/go-strip-source/gosym/symtab.go:485
github.com/goretk/gore.(*GoFile).GetGoRoot(0xc000192000, 0xc000006018, 0xc0002fdf28)
/home/runner/work/go-strip-source/go-strip-source/file.go:195 +0x3e
main.main()
/home/runner/work/go-strip-source/go-strip-source/testM/main.go:48 +0x2d0
编译信息抹除与字符串混淆时出错,这是什么问题,请问你的go环境是多少版的?
[INFO] 已生成木马,正在进行编译信息抹除与字符串混淆...
[Fatal] exit status 2%!(EXTRA string=2022/05/10 11:14:02 开始混淆
2022/05/10 11:14:02 文件结构:PE
2022/05/10 11:14:02 混淆 BuildId
panic: runtime error: invalid memory address or nil pointer dereference
[signal 0xc0000005 code=0x0 addr=0x50 pc=0x1ed77e]
goroutine 1 [running]:
github.com/goretk/gore/gosym.(*Table).GetGo12(...)
/home/runner/work/go-strip-source/go-strip-source/gosym/symtab.go:485
github.com/goretk/gore.(*GoFile).GetGoRoot(0xc00001d040, 0xc000006018, 0xc00005bf28)
/home/runner/work/go-strip-source/go-strip-source/file.go:195 +0x3e
main.main()
/home/runner/work/go-strip-source/go-strip-source/testM/main.go:48 +0x2d0
)
4.9测试
360 被杀
火绒 依旧坚挺
卡巴斯基 依旧坚挺
智量秒了,360后知后觉,还有其他BUG
生成时对原始shellcode要求挺高,好像一点点混淆encode就不行了,
而且如果前一次的失败生成了个cuiriTemp文件夹,得删掉不然就没办法正常生成了.
可否提供CS详细操作步骤?
可否提供CS详细操作步骤?
我CS生成的shellcode,配合您的工具成功生成EXE,但是执行后没有回连。
使用时提示go运行环境缺失,实际已安装
cs原生shellcode直接生成不行
希望能加上生成dll的功能
如题,现在这款工具只能生成exe
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.