BinaryScary / NET-ObfuscateLinks
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
☆238Updated 2 years ago
Alternatives and similar repositories for NET-Obfuscate
Users that are interested in NET-Obfuscate are comparing it to the libraries listed below
Sorting:
- Managed assembly shellcode generation☆271Updated 4 years ago
- C# Based Universal API Unhooker☆404Updated 3 years ago
- C# Reflective loader for unmanaged binaries.☆436Updated 2 years ago
- Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…☆582Updated 3 years ago
- dem sharp donuts☆198Updated 2 years ago
- A set of scripts that demonstrate how to perform memory injection in C#☆315Updated 7 years ago
- A collection of weird ways to execute unmanaged code in .NET☆169Updated 4 years ago
- .NET project for installing Persistence☆479Updated last year
- Simple PoC demonstrating syscall execution in C#☆154Updated 5 years ago
- Executing a .NET Assembly from C++ in Memory (CLR Hosting)☆196Updated 8 years ago
- Inject .NET assemblies into an existing process☆497Updated 3 years ago
- C# Implementation of the Hell's Gate VX Technique☆214Updated 4 years ago
- .NET assembly local/remote loading/injection into memory.☆135Updated 5 years ago
- Apply a filter to the events being reported by windows event logging☆262Updated 4 years ago
- A tool for injecting 64-bit executables into legitimate processes. Users can specify a local file or download one from a URL, with all op…☆204Updated 8 months ago
- C# tool for UAC bypasses☆436Updated 3 years ago
- UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …☆349Updated 2 years ago
- .NET Project for performing Authenticated Remote Execution☆398Updated 2 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆217Updated 5 years ago
- OffensivePH - use old Process Hacker driver to bypass several user-mode access controls☆333Updated 3 years ago
- ☆281Updated 4 years ago
- ☆185Updated 4 years ago
- Steal a primary token and spawn cmd.exe using the stolen token☆258Updated 4 years ago
- Tool to create hidden registry keys.☆483Updated 5 years ago
- Lockless allows for the copying of locked files.☆248Updated 4 years ago
- SharpGen is a .NET Core console application that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framework console applica…☆298Updated 4 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆189Updated 5 years ago
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆345Updated 4 years ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆161Updated 5 years ago
- Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.☆84Updated 5 years ago