BinaryScary / NET-Obfuscate
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
☆232Updated last year
Alternatives and similar repositories for NET-Obfuscate:
Users that are interested in NET-Obfuscate are comparing it to the libraries listed below
- C# Based Universal API Unhooker☆393Updated 3 years ago
- Managed assembly shellcode generation☆266Updated 3 years ago
- C# Reflective loader for unmanaged binaries.☆428Updated 2 years ago
- Simple PoC demonstrating syscall execution in C#☆154Updated 4 years ago
- Executing a .NET Assembly from C++ in Memory (CLR Hosting)☆188Updated 8 years ago
- dem sharp donuts☆188Updated 2 years ago
- .NET assembly local/remote loading/injection into memory.☆131Updated 5 years ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆155Updated 4 years ago
- A collection of weird ways to execute unmanaged code in .NET☆161Updated 3 years ago
- Inject .NET assemblies into an existing process☆486Updated 3 years ago
- A set of scripts that demonstrate how to perform memory injection in C#☆310Updated 7 years ago
- C# Implementation of the Hell's Gate VX Technique☆210Updated 4 years ago
- Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…☆554Updated 3 years ago
- .NET project for installing Persistence☆464Updated 7 months ago
- Managed code hooking template.☆130Updated 3 years ago
- Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.☆82Updated 5 years ago
- C# tool for UAC bypasses☆418Updated 3 years ago
- Dynamically invoke arbitrary unmanaged code from managed code without PInvoke.☆715Updated 2 years ago
- A tool for injecting 64-bit executables into legitimate processes. Users can specify a local file or download one from a URL, with all op…☆199Updated 3 months ago
- PoC to demonstrate how CLR ETW events can be tampered.☆185Updated 4 years ago
- UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …☆344Updated 2 years ago
- ☆278Updated 4 years ago
- C# code to Sandbox Defender (and most probably other AV/EDRs).☆163Updated 2 years ago
- A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this proje…☆451Updated 3 years ago
- Another meterpreter injection technique using C# that attempts to bypass Defender☆254Updated 3 years ago
- Apply a filter to the events being reported by windows event logging☆261Updated 3 years ago
- Example code for EDR bypassing☆150Updated 5 years ago
- .NET Project for performing Authenticated Remote Execution☆393Updated 2 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆214Updated 4 years ago
- ABUSING WINDOWS TELEMETRY FOR PERSISTENCE☆139Updated 4 years ago