DamonMohammadbagher / NativePayload_Tinjection
Remote Thread Injection by C# + Delegate Techniques
☆12Updated last year
Alternatives and similar repositories for NativePayload_Tinjection:
Users that are interested in NativePayload_Tinjection are comparing it to the libraries listed below
- Rasta's mouse AMSI patch but with function that makes it undetectable.☆12Updated 3 years ago
- A simple injector that uses LoadLibraryA☆17Updated 4 years ago
- A custom run space to bypass AMSI and Constrained Language mode in PowerShell.☆18Updated last year
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆16Updated 6 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆37Updated 3 years ago
- C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.☆35Updated 3 years ago
- A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…☆35Updated 5 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago
- One gate to all syscalls!☆23Updated 2 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 3 years ago
- A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…☆17Updated 4 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 4 years ago
- Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog☆13Updated 5 years ago
- ☆14Updated 5 years ago
- ☆12Updated 4 years ago
- Runpe + DInvoke + Syscall☆16Updated 3 years ago
- A malicious .cab creation tool for CVE-2021-40444☆12Updated 3 years ago
- Automatic DLL comment link generation and explaination of the DLL Proxying techniques☆10Updated 3 years ago
- Video files for eBook: "Bypassing AVs by C#.NET Programming"☆41Updated last year
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 5 years ago
- Red Team C2 and Post Exploitation Code☆36Updated this week
- PoC code from blog☆16Updated 4 years ago
- I used this to see if an EDR is running in Safe Mode☆35Updated 4 years ago
- Collection of shellcode injection and execution techniques☆16Updated 3 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆26Updated 2 years ago
- Disabling Windows Defender & downloading payload☆20Updated 4 years ago
- Process injection via KernelCallbackTable☆14Updated 3 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆51Updated 3 years ago