AV Evasion Techniques
☆83Jul 28, 2022Updated 3 years ago
Alternatives and similar repositories for evasion
Users that are interested in evasion are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Windows Post-Exploitation tools wrapper☆12Jun 24, 2024Updated 2 years ago
- Linux Post-Exploitation tools wrapper☆20Mar 21, 2023Updated 3 years ago
- Patch AMSI and ETW☆252May 8, 2024Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆89Jul 7, 2022Updated 4 years ago
- MacroPhantom automates the process of generating XOR+Caesar encrypted shellcode and embedding it into VBA macros for Microsoft Office doc…☆22Mar 20, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆626Jul 22, 2022Updated 3 years ago
- PEN-300 collection to help you on your exam.☆720Feb 25, 2026Updated 4 months ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,449Jul 27, 2025Updated 11 months ago
- A new AMSI Bypass technique using .NET ALI Call Hooking.☆194Nov 15, 2022Updated 3 years ago
- random code snippets, useful for getting started☆123Nov 29, 2025Updated 7 months ago
- AspXVenom automates the process of generating encoded shellcode and embedding it into ASPX webshells, providing a smooth workflow for pen…☆19Mar 19, 2025Updated last year
- DLL sideloading techniques for stealthy payload execution on Windows☆92Sep 20, 2023Updated 2 years ago
- ☆19Jan 11, 2023Updated 3 years ago
- C# havoc implant☆101Feb 12, 2023Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆1,697Apr 14, 2025Updated last year
- Simple & Powerful PowerShell Script Obfuscator☆595May 13, 2025Updated last year
- Loads any C# binary in mem, patching AMSI + ETW.☆849Oct 3, 2021Updated 4 years ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆349Oct 17, 2022Updated 3 years ago
- ☆20Aug 10, 2022Updated 3 years ago
- This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and down…☆257May 25, 2023Updated 3 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,642Jul 10, 2023Updated 2 years ago
- Bypass AMSI by patching AmsiScanBuffer☆282Jun 4, 2021Updated 5 years ago
- This repo contains some Amsi Bypass methods i found on different Blog Posts.☆2,179Nov 28, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Efflanrs - GUI for Snaffler Output☆27Sep 13, 2024Updated last year
- AutoMSF is a Python script designed for fast generation and deployment of multiple types of Meterpreter reverse_https payloads. Created t…☆19Mar 20, 2025Updated last year
- A windows token impersonation tool☆325Apr 19, 2023Updated 3 years ago
- A launcher to load a DLL with xored cobalt strike shellcode executed in memory through process hollowing technique☆29Nov 11, 2022Updated 3 years ago
- Windows security research toolkit for LPE, persistence, COM hijacking, and attack surface enumeration.☆203Jun 13, 2026Updated 3 weeks ago
- ☆27Aug 11, 2025Updated 10 months ago
- Easy peasy file uploads☆37Jun 18, 2026Updated 3 weeks ago
- Nim Library for Offensive Security Development☆200Sep 4, 2023Updated 2 years ago
- ☆70Aug 2, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,102Apr 19, 2023Updated 3 years ago
- CVE's we discovered along the way☆17Oct 18, 2021Updated 4 years ago
- A C# port of the MinHook API hooking library☆55Oct 5, 2022Updated 3 years ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆821Mar 28, 2025Updated last year
- Use hardware breakpoint to dynamically change SSN in run-time☆280Apr 10, 2024Updated 2 years ago
- RCE exploit for Microsoft Exchange Server (CVE-2021-26855).☆22Apr 23, 2022Updated 4 years ago
- Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to…☆13May 30, 2022Updated 4 years ago