EvilBytecode / PS2BATLinks
A Documentation for my module PS2BAT, it converts Powershell Scripts to Batchfile ones.
☆11Updated 2 months ago
Alternatives and similar repositories for PS2BAT
Users that are interested in PS2BAT are comparing it to the libraries listed below
Sorting:
- Whenever PowerShell is launched, Notepad will also open. You can customize the script for educational purposes, but I emphasize that I do…☆10Updated 2 months ago
- Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.☆12Updated 2 months ago
- Parent Process ID Spoofing, coded in CGo.☆22Updated 2 months ago
- Ransomware written in go, encrypt - decrypt.☆25Updated 2 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆22Updated 2 months ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆12Updated 2 months ago
- Execute Remote Assembly with args passing and with AMSI and ETW patching☆11Updated 2 years ago
- ☆19Updated 2 months ago
- A mechanism that trampoline hooks functions in x86/x64 systems.☆22Updated 9 months ago
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- Misery Loader to bypass modern EDR solutions☆11Updated 6 months ago
- ☆31Updated 3 months ago
- A utility that can be used to launch an executable with a DLL injected☆20Updated last year
- Golang Implementation of Hell's gate☆17Updated 2 years ago
- UAC via computerdefaults.exe☆12Updated 3 months ago
- Payload Dropper with Persistance & Privesc & UAC bypass 🐱👤☆13Updated last year
- Malware development: persistence - part 1: startup folder registry keys. C++ implementation☆12Updated 3 years ago
- PoC for detecting and evading ETW detection of .Net Assembly.Load☆20Updated 4 years ago
- Process Hollowing in Rust with Process Executable Relocation Support for both 32 and 64 bit architecture environments.☆20Updated 6 months ago
- A malicious keyboard that delivers a multi-staged attack, consisting of a trojan payload which can bypass antivirus, with Windows machine…☆13Updated 3 months ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆21Updated 3 months ago
- Tool for obtaining information about PPL processes☆17Updated last year
- Loading and executing shellcode in C# without PInvoke.☆22Updated 3 years ago
- ☆30Updated 4 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago
- Obfuscate payloads using IPv4, IPv6, MAC or UUID strings☆20Updated last year
- My Own VirtualAlloc Implementation to use as alternative unknown for all the defense solutions of VirtualAlloc Win32 API Function☆9Updated last year
- Run shellcode via EnumDesktopsA. C++ implementation☆13Updated 3 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- A tool for leveraging elevated acess over a computer to boot the computer into Windows Safe Mode, alter settings, and then boot back into…☆16Updated 3 years ago