BinaryScary / NET-ObfuscateLinks
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
☆240Updated 2 years ago
Alternatives and similar repositories for NET-Obfuscate
Users that are interested in NET-Obfuscate are comparing it to the libraries listed below
Sorting:
- C# Based Universal API Unhooker☆407Updated 3 years ago
- C# Reflective loader for unmanaged binaries.☆442Updated 2 years ago
- Managed assembly shellcode generation☆274Updated 4 years ago
- .NET assembly local/remote loading/injection into memory.☆135Updated 6 years ago
- Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…☆587Updated 4 years ago
- A set of scripts that demonstrate how to perform memory injection in C#☆315Updated 7 years ago
- A collection of weird ways to execute unmanaged code in .NET☆174Updated 4 years ago
- Simple PoC demonstrating syscall execution in C#☆154Updated 5 years ago
- Lockless allows for the copying of locked files.☆249Updated 4 years ago
- dem sharp donuts☆201Updated 3 years ago
- Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.☆84Updated 5 years ago
- A tool for injecting 64-bit executables into legitimate processes. Users can specify a local file or download one from a URL, with all op…☆204Updated 11 months ago
- C# Implementation of the Hell's Gate VX Technique☆215Updated 5 years ago
- Executing a .NET Assembly from C++ in Memory (CLR Hosting)☆201Updated 8 years ago
- The program is designed to obfuscate the shellcode.☆202Updated 4 years ago
- Steal a primary token and spawn cmd.exe using the stolen token☆258Updated 4 years ago
- Inject .NET assemblies into an existing process☆503Updated 3 years ago
- Process Ghosting in C#☆215Updated 3 years ago
- .NET project for installing Persistence☆488Updated last year
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆162Updated 5 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆217Updated 5 years ago
- Another meterpreter injection technique using C# that attempts to bypass Defender☆261Updated 3 years ago
- UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …☆349Updated 3 years ago
- SharpGen is a .NET Core console application that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framework console applica…☆298Updated 4 years ago
- ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …☆217Updated 2 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆190Updated 5 years ago
- .NET Project for performing Authenticated Remote Execution☆403Updated 2 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆247Updated 5 years ago
- C# tool for UAC bypasses☆445Updated 4 years ago
- Managed code hooking template.☆133Updated 3 years ago