ProcessusT / Bypass-AV-DirectSyscallsLinks
Scripts permettant de contourner la protection antivirale de Windows Defender via la technique de Direct Syscalls avec une injection de shellcode préalablement obfusqué avec un fonction XOR.
☆30Updated 3 years ago
Alternatives and similar repositories for Bypass-AV-DirectSyscalls
Users that are interested in Bypass-AV-DirectSyscalls are comparing it to the libraries listed below
Sorting:
- A C2 framework built for my bachelors thesis☆55Updated last month
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated 2 years ago
- A collection of Cobalt Strike Aggressor scripts.☆106Updated 4 years ago
- C# havoc implant☆101Updated 2 years ago
- Small project to facilitate creation of .lnk payloads☆75Updated 3 years ago
- PowerShell runner for executing malicious payloads in order to bypass Windows Defender.☆72Updated 4 years ago
- Obfuscated, FUD Simple PowerShell Reverse Shell One-Liner☆80Updated 2 years ago
- Inject RDPThief into memory with PowerShell.☆65Updated 11 months ago
- An updated version of keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard in…☆105Updated 2 years ago
- Bypass AMSI By Dividing files into multiple smaller files☆46Updated 3 years ago
- A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.☆15Updated 2 years ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆42Updated last year
- A Havoc UI tool to pivot onto a machine using ligolo-ng☆50Updated last year
- Malicious powershell scripts loader designed to avoid detection.☆61Updated 2 years ago
- C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments☆113Updated 3 years ago
- Erebus is a payload generator written in Nim.☆16Updated 2 years ago
- LSTAR - CobaltStrike Translated to EN☆22Updated 2 years ago
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- ☆75Updated 9 months ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆65Updated 3 years ago
- Duplicate not owned Token from Running Process☆74Updated 2 years ago
- Steal/Inject Chrome cookies over the DevTools (--remote-debugging-port) protocol.☆112Updated 2 years ago
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.☆91Updated 8 months ago
- .bin file to shellcode convertor☆39Updated last year
- A repository with my code snippets for research/education purposes.☆52Updated 2 years ago
- Most Responder's configuration power in your hand.☆51Updated 11 months ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆85Updated 2 years ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆100Updated 8 months ago
- ✉️ HTML Smuggling generator&obfuscator for your Red Team operations☆171Updated last year
- Projected developed for fun only that simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persist…☆62Updated last year