EvilBytecode / Powershell-PersistanceLinks
Whenever PowerShell is launched, Notepad will also open. You can customize the script for educational purposes, but I emphasize that I do not take any responsibility for its use or any actions taken.
☆11Updated 6 months ago
Alternatives and similar repositories for Powershell-Persistance
Users that are interested in Powershell-Persistance are comparing it to the libraries listed below
Sorting:
- Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.☆13Updated 6 months ago
- Parent Process ID Spoofing, coded in CGo.☆23Updated 6 months ago
- ☆21Updated 6 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆23Updated 6 months ago
- Just another Process Injection using Process Hollowing technique.☆19Updated 2 years ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆14Updated 6 months ago
- Python3 tool to perform password spraying using RDP☆16Updated 2 years ago
- powershell script i wrote that can suspend an arbitrary process (with limits)☆22Updated 2 years ago
- Obfuscate payloads using IPv4, IPv6, MAC or UUID strings☆21Updated last year
- Extension functionality for the NightHawk operator client☆26Updated 2 years ago
- Golang Implementation of Hell's gate☆20Updated 2 years ago
- An improved fork of NoPhish.☆13Updated 6 months ago
- Toolkit of Projects to attack and evade Event Trace for Windows☆24Updated 2 months ago
- single-threaded event driven sleep obfuscation poc for linux☆35Updated 5 months ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆18Updated last year
- Unhook Ntdll.dll, Go & C++.☆32Updated 6 months ago
- Mythic C2 wrapper for NimSyscallPacker☆25Updated 8 months ago
- 「⚙️」Detect which native Windows API's (NtAPI) are being hooked☆38Updated 11 months ago
- ECC Public Key Cryptography☆38Updated 2 years ago
- ☆17Updated last year
- Unix Process hollowing in rust☆22Updated 11 months ago
- Rehashing APIs to prevent hash based detection☆14Updated 10 months ago
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆22Updated 8 months ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆34Updated 2 years ago
- A simple rpc2socks alternative in pure Go.☆30Updated last year
- Proxy function calls through the thread pool with ease☆30Updated 8 months ago
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆58Updated last year
- ☆28Updated 2 years ago
- Beacon Object Files used for Cobalt Strike☆18Updated 2 years ago
- A pure C version of SymProcAddress☆30Updated last year