Souhardya / CatharsisLinks
Raw syscall implementations with Powershell
☆30Updated 6 years ago
Alternatives and similar repositories for Catharsis
Users that are interested in Catharsis are comparing it to the libraries listed below
Sorting:
- medium-rare☆28Updated 5 years ago
- ☆45Updated 7 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆16Updated 7 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆77Updated 5 years ago
- Automate AV evasion by calling AMSI☆86Updated 2 years ago
- PoC code from blog☆16Updated 5 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 5 years ago
- An example of PE hollowing injection technique☆24Updated 6 years ago
- The source code of the SLAE assignments documented at https://rastating.github.io/☆24Updated 7 years ago
- ☆11Updated 6 years ago
- A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates☆24Updated 7 years ago
- Execute an arbitrary command within the context of another process☆20Updated 6 years ago
- ☆42Updated 6 years ago
- Antivirus Emulator Fingerprints☆29Updated 6 years ago
- ☆33Updated 6 years ago
- A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…☆33Updated 6 years ago
- Initial Commit of Coresploit☆57Updated 3 years ago
- SharpSploit is a .NET post-exploitation library written in C#☆16Updated 5 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Updated 6 years ago
- ☆43Updated 6 years ago
- Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.☆28Updated 8 years ago
- Persistent through COM Hijacking☆22Updated 6 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆37Updated 10 years ago
- ☆37Updated 6 years ago
- A set of commands to bypass Defender (and some other AVs)☆20Updated 6 years ago
- Disabling Windows Defender & downloading payload☆21Updated 5 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆34Updated 5 years ago
- A tool for scanning registery key permissions. Find where non-admins can create symbolic links.☆46Updated 5 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 5 years ago
- A Linux RAT in C☆35Updated 6 years ago