TheWover / EasyNet
Simple packer for arbitrary data using only .NET API calls. Produces a unique signature with every usage. Standalone program and library. Algorithm: Data <-> GZip <-> AES-256 <-> Base64.
☆90Updated 5 years ago
Related projects: ⓘ
- Managed code hooking template.☆127Updated 2 years ago
- ☆60Updated 9 months ago
- ReaCOM has got a lot of tools to use and is related to component object model☆73Updated 4 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆213Updated 4 years ago
- Various C# projects for offensive security☆106Updated 4 years ago
- Implementation of the .NET Profiler DLL hijack in C#☆98Updated 5 years ago
- Library of tools and examples for loading/bootstrapping managed code from unmanaged code in .NET☆62Updated 4 years ago
- Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.☆83Updated 4 years ago
- .NET tool for enumeration processes and dumping memory.☆56Updated 5 years ago
- dem sharp donuts☆185Updated 2 years ago
- .Net Assembly to block ETW telemetry in current process☆75Updated 4 years ago
- External C2 Using IE COM Objects☆96Updated 5 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆39Updated 5 years ago
- Simple Process Hollowing in C#☆66Updated 6 years ago
- SharpShell is a proof-of-concept offensive C# scripting engine that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framew…☆123Updated 5 years ago
- C2Bridges allow developers to create new custom communication protocols and quickly utilize them within Covenant.☆67Updated 3 years ago
- C# code to run shellcode in a sneaky way☆89Updated 3 years ago
- Automate AV evasion by calling AMSI☆85Updated last year
- WMI Event Subscription Persistence in C#☆112Updated 5 years ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆150Updated 4 years ago
- CSHARP DCOM Fun��☆120Updated 5 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 4 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆184Updated 4 years ago
- Code Exec via Excel☆83Updated 7 years ago
- .NET assembly local/remote loading/injection into memory.☆124Updated 5 years ago
- A simple POC to demonstrate the power of .NET debugging for injection☆71Updated 4 years ago
- Execute .Net assemblies using Rundll32.exe☆110Updated 3 years ago
- MSBuild Without MSBuild.exe☆155Updated 3 years ago
- DInvisibleRegistry☆81Updated 3 years ago
- SharpBox is a C# tool for compressing, encrypting, and exfiltrating data to DropBox using the DropBox API.☆108Updated 3 years ago