Shellcode and In-PowerShell solution for patching AMSI via Page Guard Exceptions
☆63Nov 15, 2025Updated 3 months ago
Alternatives and similar repositories for AMSI-Bypass-via-Page-Guard-Exceptions
Users that are interested in AMSI-Bypass-via-Page-Guard-Exceptions are comparing it to the libraries listed below
Sorting:
- Step-by-step documentation on how to decrypt SCCM database secrets offline☆50Oct 20, 2025Updated 4 months ago
- C# .NET Assembly to perform LDAP Queries☆27Apr 1, 2021Updated 4 years ago
- custom impacket mssqlclient☆26Sep 16, 2023Updated 2 years ago
- HardwareTurningPoint, Fully Go Compatible Hardware Breakpoint☆16Jan 30, 2025Updated last year
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Jan 30, 2025Updated last year
- AppLocker-Based EDR Neutralization☆323Dec 19, 2025Updated 2 months ago
- AI-powered MCP penetration testing framework combining HexStrike's 150+ security tools with BOAZ's advanced payload evasion (77+ loader…☆41Nov 27, 2025Updated 3 months ago
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆84Jan 26, 2026Updated last month
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆87Feb 9, 2026Updated 3 weeks ago
- Lateral Movement☆126Nov 14, 2023Updated 2 years ago
- An AD CS toolkit for AD Admins, Defensive Security Professionals, and Filthy Red Teamers☆29Feb 21, 2026Updated 2 weeks ago
- ASPX Web Shell with COFF Loader☆79Updated this week
- using wnbios64.sys for arbitrary r/w☆15Oct 12, 2025Updated 4 months ago
- Executing Shellcode with ReadDirectoryChanges’s Hidden Callback☆30Oct 13, 2025Updated 4 months ago
- Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …☆54Feb 20, 2026Updated 2 weeks ago
- Bypass WiFi client isolation on Open and WPA2-PSK networks☆40Oct 14, 2025Updated 4 months ago
- A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.☆71Nov 16, 2025Updated 3 months ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆118May 2, 2024Updated last year
- ☆26Aug 11, 2025Updated 6 months ago
- ☆21Sep 12, 2025Updated 5 months ago
- A Windows tool that converts LDIF files to BloodHound CE☆27Dec 20, 2025Updated 2 months ago
- Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques☆95Dec 28, 2025Updated 2 months ago
- ☆198Mar 28, 2025Updated 11 months ago
- Extract the SAM and SYSTEM hives using the Volume Shadow Copy (VSS) API. With exfiltration and XOR obfuscation options. Implemented in C#…☆341Feb 2, 2026Updated last month
- Bypasses AMSI protection through remote memory patching and parsing technique.☆54May 12, 2025Updated 9 months ago
- SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connecti…☆440Nov 3, 2025Updated 4 months ago
- Payload Generation Framework☆21Oct 24, 2024Updated last year
- PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…☆43Nov 9, 2025Updated 3 months ago
- Active Directory information dumper via ADWS for evasion purposes.☆179Feb 23, 2026Updated last week
- ☆21Jul 13, 2022Updated 3 years ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆25Sep 29, 2023Updated 2 years ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆25May 4, 2024Updated last year
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Jan 20, 2025Updated last year
- ☆620Feb 5, 2026Updated last month
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆212Sep 20, 2025Updated 5 months ago
- ☆58Dec 10, 2025Updated 2 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆123Jul 11, 2025Updated 7 months ago
- Python script to compress VBA macro files☆24Feb 2, 2023Updated 3 years ago
- JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by …☆121Sep 2, 2025Updated 6 months ago