EvilBytecode / PS2BAT
A Documentation for my module PS2BAT, it converts Powershell Scripts to Batchfile ones.
☆10Updated 2 weeks ago
Alternatives and similar repositories for PS2BAT:
Users that are interested in PS2BAT are comparing it to the libraries listed below
- Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.☆11Updated 2 weeks ago
- Ransomware written in go, encrypt - decrypt.☆20Updated last week
- Parent Process ID Spoofing, coded in CGo.☆21Updated 2 weeks ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.☆13Updated 2 weeks ago
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆18Updated 2 weeks ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆11Updated 2 weeks ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆20Updated 2 weeks ago
- ☆17Updated 2 months ago
- Golang Implementation of Hell's gate☆17Updated last year
- Deobfuscation of XorStringsNet☆14Updated 6 months ago
- Examples how to use a Assm (Assembly) in a go.☆17Updated 2 weeks ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆31Updated 10 months ago
- Payload Dropper with Persistance & Privesc & UAC bypass 🐱👤☆13Updated last year
- reverse engineering random malwares☆23Updated 3 months ago
- Unhook Ntdll.dll, Go & C++.☆21Updated 2 weeks ago
- 💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby☆9Updated 2 weeks ago
- This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…☆15Updated 3 years ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆21Updated 3 weeks ago
- A utility that can be used to launch an executable with a DLL injected☆18Updated last year
- LSASS Credential Dumper that utilizes the Windows API, in-memory RC4 encryption and Base64 encoding, and HTTPS exfiltration.☆10Updated last year
- Near compile-time string obfuscation for Golang☆13Updated last year
- Unix Process hollowing in rust☆22Updated 4 months ago
- Hide code from dnSpy and other C# spying tools☆42Updated 4 years ago
- A simple website to act as a store for havoc modules and extensions☆26Updated 3 months ago
- A Free Open sourced crypter that builds a output .NET .exe Stub (Updated whenever I feel like it)☆13Updated this week
- A collection of sample code used in some experiments with Sliver C2☆13Updated 2 years ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆16Updated 6 months ago
- Offensive Assembly code snippets.☆12Updated last year
- RunPE adapted for x64 and written in C, does not use RWX☆25Updated 11 months ago
- A simple PE loader.☆26Updated 2 years ago