Alternatives and similar repositories for xencrypt

Users that are interested in xencrypt are comparing it to the libraries listed below

• Dec0ne / AMS-BP
  AMSI Bypass for powershell
  ☆30Updated 3 years ago
• cham423 / cs-tools
  cobalt strike tools
  ☆31Updated 3 years ago
• exploitblizzard / Syscall-Example
  Using syscall to load shellcode, Evasion techniques
  ☆27Updated 3 years ago
• tomcarver16 / AmsiHook
  AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.
  ☆64Updated 4 years ago
• GetRektBoy724 / TripleS
  Extracting Syscall Stub, Modernized
  ☆64Updated 3 years ago
• mantvydasb / RdpThief
  Extracting Clear Text Passwords from mstsc.exe using API Hooking.
  ☆17Updated 5 years ago
• plackyhacker / Peruns-Fart
  Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.
  ☆107Updated 3 years ago
• OlivierLaflamme / DNSWho
  transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV
  ☆50Updated 4 years ago
• GeorgePatsias / PayloadFactory
  C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
  ☆35Updated 3 years ago
• reznok / MemoryLoader
  A .NET binary loader that bypasses AMSI
  ☆46Updated 3 years ago
• warferik / CVE-2019-3980
  ☆17Updated 4 years ago
• KINGSABRI / AssemblyLoader
  Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()
  ☆34Updated 4 years ago
• GetRektBoy724 / SharpHalos
  My implementation of Halo's Gate technique in C#
  ☆54Updated 3 years ago
• praetorian-inc / Matryoshka
  Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.
  ☆40Updated 3 years ago
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆53Updated 3 years ago
• S3cur3Th1sSh1t / SharpUnhooker
  C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
  ☆22Updated 2 years ago
• BC-SECURITY / SocksProxyServer-Plugin
  Socks Proxy Server Plugin for Invoke-SocksProxy
  ☆17Updated last month
• jnqpblc / SharpReg
  SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.
  ☆29Updated 5 years ago
• tomcarver16 / SimpleInjector
  A simple injector that uses LoadLibraryA
  ☆17Updated 4 years ago
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆53Updated 4 years ago
• S3cur3Th1sSh1t / SharpOxidResolver
  IOXIDResolver from AirBus Security/PingCastle
  ☆50Updated 4 years ago
• sailay1996 / FileWrite2system
  File Write Weapon for Privilege Escalation To get SYSTEM
  ☆18Updated 4 years ago
• dosxuz / ProcessGhosting
  Small POC for process ghosting
  ☆39Updated 3 years ago
• thesnoom / extps-cobalt-strike-bof
  Extended Process List (Search functionality)
  ☆29Updated 4 years ago
• rasta-mouse / Covenant
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆13Updated 2 years ago
• S3cur3Th1sSh1t / RDPThiefInject
  RDPThief donut shellcode inject into mstsc
  ☆85Updated 3 years ago
• Flangvik / SharpAppLocker
  C# port of the Get-AppLockerPolicy PS cmdlet
  ☆99Updated 2 years ago
• KINGSABRI / DotNetToJScriptMini
  A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.
  ☆47Updated 4 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆93Updated 3 years ago
• GetRektBoy724 / ReversePowernoid
  Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)
  ☆30Updated 3 years ago