S3cur3Th1sSh1t / Amsi-Bypass-Powershell
This repo contains some Amsi Bypass methods i found on different Blog Posts.
☆1,669Updated 2 months ago
Related projects: ⓘ
- The Hunt for Malicious Strings☆1,048Updated 2 years ago
- Extract credentials from lsass remotely☆2,021Updated 2 months ago
- ☆1,499Updated 3 months ago
- Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure …☆2,243Updated this week
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,009Updated 3 months ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,119Updated 8 months ago
- ☆1,376Updated last year
- Abusing impersonation privileges through the "Printer Bug"☆1,845Updated 4 years ago
- A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.☆1,783Updated 2 weeks ago
- Compiled Binaries for Ghostpack (.NET v4.0)☆1,127Updated last year
- Windows Local Privilege Escalation from Service Account to System☆668Updated 4 years ago
- SharpUp is a C# port of various PowerUp functionality.☆1,225Updated 7 months ago
- Windows AV Evasion☆729Updated 4 years ago
- The swiss army knife of LSASS dumping☆1,738Updated 2 weeks ago
- Some notes and examples for cobalt strike's functionality☆969Updated 2 years ago
- A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)☆953Updated 3 months ago
- Some usefull Scripts and Executables for Pentest & Forensics☆1,060Updated last month
- A Python based ingestor for BloodHound☆1,894Updated last month
- Hide your Powershell script in plain sight. Bypass all Powershell security features☆1,086Updated 5 years ago
- Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities☆1,533Updated 3 years ago
- Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.☆1,932Updated last year
- Another Windows Local Privilege Escalation from Service Account to System☆1,027Updated 3 years ago
- Identifies the bytes that Microsoft Defender flags on.☆2,260Updated last year
- Active Directory certificate abuse.☆1,464Updated last month
- Writing custom backdoor payloads with C# - Defcon 27 Workshop☆1,073Updated 2 years ago
- ☆1,980Updated last year
- Starkiller is a Frontend for PowerShell Empire.☆1,344Updated 4 months ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,709Updated last year
- Kerberos unconstrained delegation abuse toolkit☆1,104Updated 8 months ago
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,564Updated 2 weeks ago