├── LICENSE ├── README.md └── favicon.ico /LICENSE: -------------------------------------------------------------------------------- 1 | MIT License 2 | 3 | Copyright (c) 2023 langsasec 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to deal 7 | in the Software without restriction, including without limitation the rights 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 9 | copies of the Software, and to permit persons to whom the Software is 10 | furnished to do so, subject to the following conditions: 11 | 12 | The above copyright notice and this permission notice shall be included in all 13 | copies or substantial portions of the Software. 14 | 15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 21 | SOFTWARE. 22 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # c2-shellcode-py 2 | 免杀360,火绒的Python-shellcode加载器,可直接生成可执行文件exe 3 | 4 | ![image](https://github.com/langsasec/c2-shellcode-py/assets/45072131/ada70466-b193-43ee-bfba-1fa15e5b4da2) 5 | ## 停更 6 | 7 | 为保证付费社群利益,本项目停更:https://mp.weixin.qq.com/s?__biz=MzI1ODM1MjUxMQ==&mid=2247493072&idx=1&sn=3e4c49d4e9d09d8ef94d8db96b6ad13d&chksm=ea0bd1c0dd7c58d6a559107f2d113cb8ad97be06bf1e7a4079c91994195a7ebb507d4ec9165d#rd 8 | 9 | ## 2023 6.4更新 10 | 浪飒loader.exe更新,g了及时反馈,不然我咋更新 11 | 12 | https://github.com/langsasec/c2-shellcode-py/tree/main/%E6%B5%AA%E9%A3%92loader 13 | ## 2023.4.28更新 14 | BypassAV-langsa.py你懂得,注意多了个requirement 15 | 16 | ## 2023.4.23更新 17 | 浪飒loader由于hash死的所以火绒也g了 18 | 19 | ## 2023.4.6更新 20 | 21 | **原`Bypass.py`运行直接生成exe,还可免杀360,无法免杀火绒,火绒3.28病毒库绕过,3.30号病毒库已收录** 22 | 23 | **新`BypassAV-浪飒.py`运行直接生成exe,已再次绕过最新火绒,360成功上线,其他杀软状况自测。** 24 | 25 | 26 | 27 | ![image-20230406175849221](https://img2023.cnblogs.com/blog/2411575/202304/2411575-20230406180433832-1347029140.png) 28 | 29 | ![image-20230406180709358](https://img2023.cnblogs.com/blog/2411575/202304/2411575-20230406180710010-930191902.png) 30 | 31 | ![image-20230406175937624](https://img2023.cnblogs.com/blog/2411575/202304/2411575-20230406180725107-1489772396.png) 32 | 33 | ## 2023.3.29更新 34 | 35 | 上传样本过多,导致部分杀毒在打包完毕在长时间后会被记录,请重新运行代码生成及时上线即可 36 | 37 | ## 2023.3.27更新 38 | 39 | 没有更改代码,发现**腾讯电脑管家**和**金山毒霸**也可绕过 40 | 41 | ![image-20230327210233644](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230327210404487-1102022697.png) 42 | 43 | ![image-20230327210540922](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230327210539969-230609198.png) 44 | 45 | 46 | 47 | ## 使用 48 | 49 | CS4.7生成python类型shellcode 50 | 51 | ![image-20230323173046659](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230323173046883-891160038.png) 52 | 53 | 保存为payload.py与Bypass.py/BypassAV-浪飒放在一个目录下 54 | 55 | ![image-20230323174256475](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230323174256651-1588728063.png) 56 | 57 | 等待运行完毕,在dist目录下会生成exe。 58 | 59 | ![image-20230323174911474](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230323174917591-116118579.png) 60 | 61 | 上传目标机器运行直接上线 62 | 63 | ![image-20230323172532350](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230323172532786-689062764.png) 64 | 65 | ## 某60 66 | 67 | ![image-20230323175059233](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230323175059639-1587542681.png) 68 | 69 | ## 某绒 70 | 71 | ![image-20230323175351079](https://img2023.cnblogs.com/blog/2411575/202303/2411575-20230323175351380-242584426.png) 72 | -------------------------------------------------------------------------------- /favicon.ico: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/langsasec/c2-shellcode-py/331712c24fc2c489b030052fda48b8dc7bb0e3ae/favicon.ico --------------------------------------------------------------------------------