Tomiwa-Ot / py-amsi
Scan strings or files for malware using the Windows Antimalware Scan Interface
☆29Updated last year
Related projects ⓘ
Alternatives and complementary repositories for py-amsi
- ☆37Updated 3 weeks ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆40Updated last year
- Cobalt Strike BOFS☆16Updated 11 months ago
- ☆25Updated last year
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆34Updated last year
- Docker container for running CobaltStrike 4.10☆33Updated 2 months ago
- A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.☆31Updated last year
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆43Updated last year
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆30Updated last year
- A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.☆12Updated last year
- Enumerate SSN (System Service Numbers or Syscall ID) and syscall instruction address in ntdll module by parsing the PEB of the current pr…☆18Updated 9 months ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆22Updated 2 months ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- DFSCoerce exe revisited version with custom authentication☆36Updated 10 months ago
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆31Updated 3 weeks ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆42Updated 3 months ago
- ☆35Updated 11 months ago
- Proof of Concept Exploit for CVE-2024-9465☆25Updated last month
- A pure C version of SymProcAddress☆23Updated 8 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 6 months ago
- POC for CVE-2024-3183 (FreeIPA Rosting)☆18Updated 3 months ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆27Updated last year
- ☆46Updated last year
- A utility that can be used to launch an executable with a DLL injected☆19Updated last year
- exfiltration/infiltration toolkit☆23Updated 11 months ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆22Updated 2 years ago
- Let's analyze one of the ways to bypass the smart screen and write our own simple cryptor that runs the shellcode☆51Updated last month
- ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction☆13Updated last year
- Generate AES128 and AES256 Kerberos keys from a given username, password, and realm☆15Updated 2 months ago
- ☆50Updated 7 months ago