EvilBytecode / PS2BAT
A Documentation for my module PS2BAT, it converts Powershell Scripts to Batchfile ones.
☆12Updated 9 months ago
Alternatives and similar repositories for PS2BAT:
Users that are interested in PS2BAT are comparing it to the libraries listed below
- Ransomware written in go, encrypt - decrypt.☆20Updated 9 months ago
- Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.☆11Updated 9 months ago
- Parent Process ID Spoofing, coded in CGo.☆22Updated 9 months ago
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆19Updated 8 months ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆11Updated 7 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆20Updated last month
- ☆16Updated last month
- Near compile-time string obfuscation for Golang☆13Updated last year
- shellcode loader that uses indirect syscalls written in D Lang The loader bypasses user-mode hooks by resolving system calls manually fro…☆9Updated 6 months ago
- Unhook Ntdll.dll, Go & C++.☆21Updated 8 months ago
- Golang Implementation of Hell's gate☆17Updated last year
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆30Updated 9 months ago
- A malicous Golang Package☆14Updated 9 months ago
- It was a great run, but everything must come to an end. Please don’t contact me. Before I go, here’s a final gift :)☆19Updated last week
- reverse engineering random malwares☆20Updated 2 months ago
- Deobfuscation of XorStringsNet☆13Updated 4 months ago
- Go ransomware leveraging ChaCha20 and ECIES encryption with a web-based control panel.☆26Updated last week
- A utility that can be used to launch an executable with a DLL injected☆18Updated last year
- This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…☆15Updated 3 years ago
- 🚧 C# UAC Bypass technique using mock directories 🚧☆29Updated 2 years ago
- Examples how to use a Assm (Assembly) in a go.☆17Updated 9 months ago
- Bypassing Major EDR's with staged shellcode, custom getmodulehandleW and getprocaddress, veh syscalls & more.☆14Updated last week
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆16Updated 9 months ago
- Obfuscate payloads using IPv4, IPv6, MAC or UUID strings☆14Updated last year
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆16Updated 5 months ago
- run process as PPL Antimalware☆10Updated last year
- Payload Dropper with Persistance & Privesc & UAC bypass 🐱👤☆13Updated 11 months ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- This exploit use PEB walk technique to resolve API calls dynamically, obfuscate all API calls to perform process injection.☆16Updated 8 months ago