BinaryScary / NET-Obfuscate
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
☆235Updated last year
Alternatives and similar repositories for NET-Obfuscate:
Users that are interested in NET-Obfuscate are comparing it to the libraries listed below
- C# Reflective loader for unmanaged binaries.☆430Updated 2 years ago
- C# Based Universal API Unhooker☆400Updated 3 years ago
- Managed assembly shellcode generation☆271Updated 4 years ago
- A set of scripts that demonstrate how to perform memory injection in C#☆313Updated 7 years ago
- A collection of weird ways to execute unmanaged code in .NET☆164Updated 3 years ago
- .NET assembly local/remote loading/injection into memory.☆133Updated 5 years ago
- dem sharp donuts☆195Updated 2 years ago
- Executing a .NET Assembly from C++ in Memory (CLR Hosting)☆192Updated 8 years ago
- Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…☆578Updated 3 years ago
- Apply a filter to the events being reported by windows event logging☆261Updated 4 years ago
- Simple PoC demonstrating syscall execution in C#☆154Updated 4 years ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆157Updated 4 years ago
- ☆184Updated 4 years ago
- Lockless allows for the copying of locked files.☆245Updated 3 years ago
- C# Implementation of the Hell's Gate VX Technique☆212Updated 4 years ago
- Inject .NET assemblies into an existing process☆494Updated 3 years ago
- A tool for injecting 64-bit executables into legitimate processes. Users can specify a local file or download one from a URL, with all op…☆202Updated 6 months ago
- Managed code hooking template.☆131Updated 3 years ago
- Another meterpreter injection technique using C# that attempts to bypass Defender☆258Updated 3 years ago
- UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …☆348Updated 2 years ago
- .NET project for installing Persistence☆475Updated 9 months ago
- Process Ghosting in C#☆213Updated 3 years ago
- Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.☆84Updated 5 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆216Updated 5 years ago
- .NET Project for performing Authenticated Remote Execution☆393Updated 2 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆187Updated 5 years ago
- C# code to Sandbox Defender (and most probably other AV/EDRs).☆164Updated 3 years ago
- Phantom DLL hollowing PoC☆359Updated 2 years ago
- New UAC bypass for Silent Cleanup for CobaltStrike☆192Updated 3 years ago
- Bypass UAC at any level by abusing the Program Compatibility Assistant with RPC, WDI, and more Windows components☆266Updated 3 years ago