ProcessusT / Bypass-AV-DirectSyscalls

Related projects: ⓘ

• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆51Updated 2 months ago
• PolGs / Persistent-Backdoor
  Ethical Remote Acces Tool Client and Server for W10 and Linux Persist functionality
  ☆49Updated last year
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆60Updated 2 years ago
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆60Updated last year
• Dec0ne / AMS-BP
  AMSI Bypass for powershell
  ☆29Updated 2 years ago
• ScriptIdiot / BeaconNotifier-Discord
  Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.
  ☆32Updated 2 years ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆77Updated 8 months ago
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆41Updated last year
• termanix / TokenElevation
  Token Elevation to authorized user as SYSTEM or Domain Admins
  ☆22Updated last year
• HernanRodriguez1 / Bypass-AMSI
  ☆46Updated 2 years ago
• amauricio / junkshell
  ☆24Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆45Updated 2 months ago
• S12cybersecurity / DumpLsass
  C++ Code to perform a MiniDump of lsass.exe
  ☆33Updated last year
• Nuki2u / cerez
  Cerez 😈 LD_PRELOAD rootkit
  ☆21Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• p4p1 / havoc-reporter
  A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.
  ☆11Updated 10 months ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆80Updated 2 years ago
• gh0x0st / Get-Shellcode
  A solution to create obfuscated shellcode from msfvenom for PowerShell.
  ☆20Updated 2 years ago
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆37Updated 2 years ago
• SaadAhla / VT-stealer
  VirusTotal Stealer is a DATA Exfiltration tool that exfitrate office documents and tunnel them over VirusTotal API to the Team Server
  ☆62Updated 11 months ago
• ProcessusT / CobaltStrikeBypassDefender
  A launcher to load a DLL with xored cobalt strike shellcode executed in memory through process hollowing technique
  ☆24Updated last year
• VirtualAlllocEx / DSC_SVC_REMOTE
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆50Updated last year
• ADPunisher / Backup-Harvester
  ☆19Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆90Updated last year
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆74Updated 10 months ago
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆51Updated last year
• GetRektBoy724 / ReversePowernoid
  Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)
  ☆31Updated 2 years ago
• SaadAhla / IP-Hunter
  Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process
  ☆63Updated 4 months ago
• reveng007 / DareDevil
  Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10
  ☆37Updated last year
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆38Updated 3 months ago