Alternatives and similar repositories for Bypass-AV-DirectSyscalls:

Users that are interested in Bypass-AV-DirectSyscalls are comparing it to the libraries listed below

• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆55Updated 5 months ago
• termanix / TokenElevation
  Token Elevation to authorized user as SYSTEM or Domain Admins
  ☆23Updated last year
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆64Updated 3 years ago
• PolGs / Persistent-Backdoor
  Ethical Remote Acces Tool Client and Server for W10 and Linux Persist functionality
  ☆50Updated 2 years ago
• moscowchill / LSTAR-EN
  LSTAR - CobaltStrike Translated to EN
  ☆15Updated last year
• p4p1 / havoc-reporter
  A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.
  ☆12Updated last year
• Dec0ne / AMS-BP
  AMSI Bypass for powershell
  ☆30Updated 2 years ago
• ScriptIdiot / BeaconNotifier-Discord
  Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.
  ☆33Updated 2 years ago
• ELMERIKH / PyinMemoryPE
  execute PE in memory Filelessly
  ☆34Updated 2 months ago
• xiosec / Terminator
  PowerShell script to terminate protected processes such as anti-malware and EDRs.
  ☆26Updated last year
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆50Updated last year
• 4ndr34z / ntlmthief
  ☆51Updated last year
• wsummerhill / Python-Crypter
  Custom Python shellcode encryptor and obfuscator
  ☆12Updated last year
• ShutdownRepo / Get-GPPPassword
  Python script for extracting and decrypting Group Policy Preferences passwords
  ☆23Updated 3 years ago
• HernanRodriguez1 / Bypass-AMSI
  ☆47Updated 3 years ago
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆66Updated 2 years ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆62Updated 3 months ago
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆82Updated last year
• mxngel / GoAmsiKiller
  ☆14Updated last year
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆34Updated 9 months ago
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆61Updated last year
• n0tspam / RunspaceLoader
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Updated last year
• p4p1 / havoc-ligolo
  A Havoc UI tool to pivot onto a machine using ligolo-ng
  ☆44Updated last year
• VirtualAlllocEx / DSC_SVC_REMOTE
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆51Updated last year
• gh0x0st / Get-Shellcode
  A solution to create obfuscated shellcode from msfvenom for PowerShell.
  ☆24Updated 2 years ago
• susMdT / SharpAgent
  C# havoc implant
  ☆99Updated 2 years ago
• Enelg52 / Gofrette
  Gofrette is a reverse shell payload developed in Golang that bypasses Windows defender and many others anti-virus.
  ☆40Updated 2 years ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year