5h3r10ck / antivirus-evasionLinks
Applying some AV evasion techniques on a metasploit reverse shell
☆18Updated 4 years ago
Alternatives and similar repositories for antivirus-evasion
Users that are interested in antivirus-evasion are comparing it to the libraries listed below
Sorting:
- AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.☆66Updated 5 years ago
- transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV☆49Updated 4 years ago
- Injects shellcode into remote processes using direct syscalls☆79Updated 4 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- Video files for eBook: "Bypassing AVs by C#.NET Programming"☆41Updated 2 years ago
- Shellcode injector using direct syscalls☆122Updated 5 years ago
- Reflective DLL Injection with obfuscated (XOR) shellcode☆73Updated 4 years ago
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆111Updated 3 years ago
- File Write Weapon for Privilege Escalation To get SYSTEM☆18Updated 5 years ago
- C++ implant that interfaces with a SK8PARK server☆49Updated 4 years ago
- ☆22Updated 4 years ago
- NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)☆118Updated 2 years ago
- Weaponizing for privileged file writes bugs with PrintNotify Service☆134Updated 3 years ago
- AmsiScanBufferBypass using D/Invoke☆135Updated 4 years ago
- DInvisibleRegistry☆82Updated 4 years ago
- A small project to bypass UAC in windows 10/8/7 using dll injection technique☆74Updated 5 years ago
- Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process☆103Updated 2 years ago
- A simple tool to inject shellcode into the remote process with the ability to spoof parent process.☆16Updated 4 years ago
- A simple injector that uses LoadLibraryA☆18Updated 5 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆119Updated 5 years ago
- Custom Cobalt Strike stagers using different methods of thread execution and memory allocation☆110Updated 5 years ago
- AMSI Bypass Via the Heap☆107Updated 4 years ago
- Cobalt Strike BOF Files with Nim!☆86Updated 3 years ago
- Simple DLL that add a user to the local Administrators group☆78Updated 3 years ago
- My doodles as I learn C#☆78Updated 4 years ago
- adding a backdooruser using win32api☆80Updated 4 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- Polymorphic code obfuscator for use in Red Team operations☆30Updated 3 years ago
- A port of FuzzySecurity's UrbanBishop project for inline shellcode execution☆118Updated 4 years ago
- RDPThief donut shellcode inject into mstsc☆87Updated 4 years ago