S3cur3Th1sSh1t / xencrypt
A PowerShell script anti-virus evasion tool
☆17Updated 4 years ago
Alternatives and similar repositories for xencrypt:
Users that are interested in xencrypt are comparing it to the libraries listed below
- AMSI Bypass for powershell☆30Updated 2 years ago
- Making Shellcode fully undetectable using uuid☆23Updated 3 years ago
- Remote Desktop Protocol .NET Console Application for Authenticated Command Execution☆11Updated 3 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆13Updated 2 years ago
- Extracting Syscall Stub, Modernized☆62Updated 2 years ago
- My implementation of Halo's Gate technique in C#☆53Updated 2 years ago
- cobalt strike tools☆31Updated 3 years ago
- IOXIDResolver from AirBus Security/PingCastle☆46Updated 4 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆27Updated 4 years ago
- Using syscall to load shellcode, Evasion techniques☆27Updated 3 years ago
- AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.☆64Updated 4 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 3 years ago
- A simple injector that uses LoadLibraryA☆17Updated 4 years ago
- C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.☆35Updated 3 years ago
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆39Updated 3 years ago
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆106Updated 3 years ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆14Updated 3 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆22Updated 2 years ago
- Hardened Proof of Concept of D/Invoke Process Injection malware☆40Updated 4 years ago
- Load C# Code straight to memory☆53Updated 4 years ago
- ☆17Updated 4 years ago
- C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)☆22Updated last year
- A .NET binary loader that bypasses AMSI☆44Updated 3 years ago
- Socks Proxy Server Plugin for Invoke-SocksProxy☆17Updated last month
- transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV☆50Updated 4 years ago
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆37Updated 2 years ago
- A BOF to interact with COM objects associated with the Windows software firewall.☆102Updated 3 years ago
- A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.☆47Updated 3 years ago
- Video files for eBook: "Bypassing AVs by C#.NET Programming"☆41Updated last year
- Unhook DLL via cleaning the DLL 's .text section☆8Updated 3 years ago