Skip to content

Ladon911_20230402
Compare
Choose a tag to compare
@k8gege k8gege released this 02 Apr 14:22
· 47 commits to master since this release
v10.10.2
491ea2f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Ladon 10.10.2 20230402

[+]clsLog 清除崩溃日志、UsageLog日志、清除图标缓存、禁止UsageLog日志记录
[u]默认禁止基于.net程序UsageLog日志记录(如各类工具、powershell等)防止蓝队或EDR通过日志审计
[u]RunPS 无PowerShell.exe执行*.ps1脚本 新增内存绕过AMSI反病毒查杀接口
[+]默认Bypass ETW 绕过部分杀软和EDR监控
[+]HPreboot SNMP重启HP打印机 .net>=4.0

RunPS绕过AMSI执行powershell脚本

image

RunPS绕过AMSI执行powershell代码

image

绕过AMSI执行Ladon任意功能

image

CS绕过AMSI执行powershell脚本

image

Assets 3
Loading