Alternatives and similar repositories for Bypass-AMSI

Users that are interested in Bypass-AMSI are comparing it to the libraries listed below

• 0x727 / UserRegEnum_0x727
  域内普通域用户权限查找域内所有计算机上登录的用户
  ☆151Updated 2 years ago
• INotGreen / Xiebro-Plugins
  xiebroC2 plugin
  ☆58Updated 11 months ago
• bestspear / SharkOne
  Cobalt Strike 二开项目
  ☆186Updated 2 years ago
• XiaoliChan / zerologon-Shot
  Zerologon exploit with restore DC password automatically
  ☆141Updated last year
• xiecat / AlternativeShellcodeExec-Go
  ☆36Updated 2 years ago
• qigpig / Ghosting-BOF
  主要用于隐藏进程真实路径，进程带windows真签名
  ☆119Updated last year
• PDWR / 3vilGu4rd
  This is a daemon process which make a programe runing all time.
  ☆84Updated 3 years ago
• baiyies / ScreenshotBOFPlus
  Take a screenshot without injection for Cobalt Strike
  ☆202Updated 2 years ago
• TryGOTry / AutoGeaconC2
  AutoGeaconC2: 一键读取Profile自动化生成geacon实现跨平台上线CobaltStrike
  ☆142Updated last year
• Rvn0xsy / SchtaskCreator
  远程创建任务计划工具
  ☆190Updated 3 years ago
• INotGreen / Webshell-loader
  ASPX内存执行shellcode,绕过Windows Defender（AV/EDR）
  ☆125Updated 2 years ago
• yanghaoi / ridhijack
  通过C/C++实现的 Windows RID Hijacking persistence technique (RID劫持 影子账户 账户克隆).
  ☆89Updated 4 years ago
• 1y0n / AVKiller
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆138Updated 2 years ago
• Dido1960 / random_c2_profile
  Cobalt Strike random C2 Profile 修改版（适配腾讯云函数，亚马逊云函数和CrossC2自定义protocol）
  ☆90Updated 2 years ago
• JDArmy / SharpSpray
  域内密码喷射工具
  ☆136Updated 3 years ago
• qi4L / CallbackLoader-go
  Callback Function Loader Implemented in Go
  ☆140Updated last year
• lele8 / SharpUserIP
  获取服务器或域控登录日志
  ☆276Updated 2 years ago
• Ed1s0nZ / externalC2Client
  Cobalt Strike - External C2 Client
  ☆78Updated last year
• Rvn0xsy / Havoc-Agent-Handler
  This is a third party agent for Havoc C2 written in golang.
  ☆58Updated 2 years ago
• 0x727 / CloudSandbox
  收集云沙箱上线C2的ip，如微X、奇XX、3X0、virustX等
  ☆125Updated 2 years ago
• yutianqaq / Supernova_CN
  Supernova 的中文版和扩展了一些加密方式（ROT, XOR, RC4, AES, CHACHA20, B64XOR, B64RC4, B64AES, B64CHACHA20）
  ☆56Updated last year
• StarfireLab / AutoZerologon
  Zerologon自动化脚本
  ☆96Updated 2 years ago
• Peithon / scLoader
  CS shellcode 加载器
  ☆61Updated 4 years ago
• 0neAtSec / SharpDomainInfo
  根据攻防以及域信息收集经验dump快而有用的域信息
  ☆103Updated 2 years ago
• d3ckx1 / CS-Auto-migrate
  ☆27Updated 3 years ago
• Jumbo-WJB / PTH_Exchange
  If you only have hash, you can still operate exchange
  ☆78Updated 4 years ago
• raspberryhusky / antiVirusCheck
  cobaltstrike 直接判断目标beacon存在的杀软
  ☆48Updated 3 years ago
• ad-calcium / CVE-2023-22515
  Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具
  ☆110Updated 2 years ago
• Aquilao / GoTokenTheft
  Token stealing tool written by Go. Bypass Kaspersky,Defender,Avira, etc./Go 编写的 Token 窃取工具。免杀卡巴、Defender、小红伞等杀软
  ☆187Updated last year
• Pizz33 / FTPlnk_phishing
  FTP lnk调用pythonw程序，用于攻防钓鱼场景下免杀运行捆绑木马文件
  ☆75Updated last year