Alternatives and similar repositories for xencrypt

Users that are interested in xencrypt are comparing it to the libraries listed below

• Dec0ne / AMS-BP
  AMSI Bypass for powershell
  ☆30Updated 3 years ago
• plackyhacker / Peruns-Fart
  Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.
  ☆110Updated 3 years ago
• tomcarver16 / AmsiHook
  AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.
  ☆65Updated 5 years ago
• GeorgePatsias / PayloadFactory
  C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
  ☆35Updated 3 years ago
• S3cur3Th1sSh1t / SharpRDP
  Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
  ☆11Updated 4 years ago
• exploitblizzard / Syscall-Example
  Using syscall to load shellcode, Evasion techniques
  ☆27Updated 3 years ago
• S3cur3Th1sSh1t / RDPThiefInject
  RDPThief donut shellcode inject into mstsc
  ☆87Updated 4 years ago
• OlivierLaflamme / DNSWho
  transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV
  ☆50Updated 4 years ago
• GetRektBoy724 / TripleS
  Extracting Syscall Stub, Modernized
  ☆65Updated 3 years ago
• cham423 / cs-tools
  cobalt strike tools
  ☆31Updated 3 years ago
• whydee86 / FUD-ShellCode-UUID
  Making Shellcode fully undetectable using uuid
  ☆23Updated 4 years ago
• DamonMohammadbagher / Videos-BypassingAVsByCSharp
  Video files for eBook: "Bypassing AVs by C#.NET Programming"
  ☆41Updated 2 years ago
• rasta-mouse / ExternalC2.NET
  .NET implementation of Cobalt Strike's External C2 Spec
  ☆86Updated 3 years ago
• boku7 / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆80Updated 2 years ago
• tomcarver16 / SimpleInjector
  A simple injector that uses LoadLibraryA
  ☆18Updated 5 years ago
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆54Updated 5 years ago
• EncodeGroup / AggressiveGadgetToJScript
  A Cobalt Strike Aggressor script to generate GadgetToJScript payloads
  ☆102Updated 4 years ago
• Cobalt-Strike / unhook-bof
  Remove API hooks from a Beacon process.
  ☆57Updated 3 years ago
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆85Updated 2 years ago
• mez-0 / MoveScheduler
  .NET 4.0 Scheduled Job Lateral Movement
  ☆90Updated 4 years ago
• reznok / MemoryLoader
  A .NET binary loader that bypasses AMSI
  ☆46Updated 3 years ago
• GetRektBoy724 / SharpHalos
  My implementation of Halo's Gate technique in C#
  ☆54Updated 3 years ago
• warferik / CVE-2019-3980
  ☆18Updated 4 years ago
• r3nhat / XORedReflectiveDLL
  Reflective DLL Injection with obfuscated (XOR) shellcode
  ☆73Updated 4 years ago
• S3cur3Th1sSh1t / SharpOxidResolver
  IOXIDResolver from AirBus Security/PingCastle
  ☆51Updated 4 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆93Updated 3 years ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• plackyhacker / AMSI-Bypass
  Another AMSI bypass - but in C++.
  ☆23Updated 2 years ago
• byt3bl33d3r / BOF-Nim
  Cobalt Strike BOF Files with Nim!
  ☆85Updated 2 years ago
• calebsargent / GoProcDump
  Golng version of SharpDump that can be used to extract LSASS or any other proces. Provides token elevation prior to creating dump of high…
  ☆21Updated 4 years ago