3xploit666 / AM
☆12Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for AM
- Using syscall to load shellcode, Evasion techniques☆26Updated 3 years ago
- Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()☆32Updated 3 years ago
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆104Updated 2 years ago
- A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.☆47Updated 3 years ago
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆49Updated 3 years ago
- ☆26Updated last year
- An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.☆53Updated 2 years ago
- Polymorphic code obfuscator for use in Red Team operations☆30Updated 2 years ago
- ☆38Updated last year
- Bypass Windows defender syscall☆17Updated 3 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 3 years ago
- Reverse shell macro using Word VBA☆13Updated 4 years ago
- Small POC for process ghosting☆38Updated 2 years ago
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆36Updated 2 years ago
- Caeser Cipher your shellcode!☆20Updated 2 years ago
- Arbitrary File Delete in Windows Installer before 10.0.19045.2193☆29Updated 2 years ago
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- HookDetection☆44Updated 3 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 3 years ago
- Implementation of SpoolSample without rDLL☆30Updated 4 years ago
- PDF Icon File Type Spoofer☆12Updated 4 months ago
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆36Updated last year
- A C# port of the MinHook API hooking library☆50Updated 2 years ago
- A collection of C# utilities intended to be used with Cobalt Strike's execute-assembly☆46Updated last year