MzHmO / DebugAmsiLinks
DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.
☆97Updated last year
Alternatives and similar repositories for DebugAmsi
Users that are interested in DebugAmsi are comparing it to the libraries listed below
Sorting:
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- ☆112Updated 8 months ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆119Updated last year
- Construct the payload at runtime using an array of offsets☆63Updated last year
- ☆132Updated 5 months ago
- ☆124Updated last year
- Find DLLs with RWX section☆81Updated 2 years ago
- ☆107Updated 5 months ago
- ☆152Updated last year
- ☆155Updated 7 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆91Updated last year
- Two in one, patch lifetime powershell console, no more etw and amsi!☆95Updated 3 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆106Updated 3 weeks ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 4 months ago
- A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…☆94Updated 9 months ago
- ☆188Updated last year
- Impersonate Tokens using only NTAPI functions☆79Updated 4 months ago
- Lateral Movement via the .NET Profiler☆82Updated 8 months ago
- Do some DLL SideLoading magic☆85Updated last year
- A small How-To on creating your own weaponized WSL file☆83Updated 2 weeks ago
- Adversary Emulation Framework☆121Updated last month
- Lateral movement with DCOM DLL hijacking☆133Updated last month
- lsassdump via RtlCreateProcessReflection and NanoDump☆83Updated 9 months ago
- Find .net assemblies locally☆119Updated 2 years ago
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆182Updated last year
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- A Mythic agent for Windows written in C☆131Updated 2 weeks ago
- ☆116Updated 4 months ago
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆47Updated 2 months ago