Alternatives and similar repositories for Bypass-AV-DirectSyscalls

Users that are interested in Bypass-AV-DirectSyscalls are comparing it to the libraries listed below

• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆55Updated 7 months ago
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆69Updated 2 years ago
• p4p1 / havoc-reporter
  A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.
  ☆12Updated last year
• zflemingg1 / AM0N-Eye
  ☆19Updated last year
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆82Updated last year
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆64Updated 4 months ago
• PolGs / Persistent-Backdoor
  Ethical Remote Acces Tool Client and Server for W10 and Linux Persist functionality
  ☆50Updated 2 years ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆40Updated last year
• vulnableone / BypassX
  The Swiss army knife of evasion tool that bypasses AMSI, Applocker, and CLM mode simultaneously.
  ☆28Updated last year
• inb1ts / CSSHide
  Encodes a payload within a generated mock-CSS file
  ☆58Updated last year
• termanix / TokenElevation
  Token Elevation to authorized user as SYSTEM or Domain Admins
  ☆23Updated 2 years ago
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆99Updated 2 years ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆42Updated 8 months ago
• gh0x0st / Get-Shellcode
  A solution to create obfuscated shellcode from msfvenom for PowerShell.
  ☆26Updated 2 years ago
• n0tspam / RunspaceLoader
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Updated last year
• casp3r0x0 / LoaderGate
  a C# implementation for a shellcode loader that capable to bypass Cortex XDR and Sophos EDR.
  ☆30Updated last week
• p4p1 / havoc-ligolo
  A Havoc UI tool to pivot onto a machine using ligolo-ng
  ☆44Updated last year
• Bl4ckM1rror / PEAs
  ☆59Updated last year
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆80Updated last year
• HernanRodriguez1 / Bypass-AMSI
  ☆47Updated 3 years ago
• VirtualAlllocEx / DSC_SVC_REMOTE
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆51Updated 2 years ago
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆39Updated 2 years ago
• casp3r0x0 / CortexRansomBypass
  Cortex EDR Ransomware protection Bypass
  ☆24Updated 3 months ago
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆56Updated last year
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆64Updated 3 years ago
• 4ndr34z / ntlmthief
  ☆51Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆50Updated 5 months ago