XaFF-XaFF / AMSI-Bypass
Rasta's mouse AMSI patch but with function that makes it undetectable.
☆12Updated 3 years ago
Alternatives and similar repositories for AMSI-Bypass:
Users that are interested in AMSI-Bypass are comparing it to the libraries listed below
- Simple keylogger written in C# which is ready for modifications.☆13Updated 3 years ago
- A custom run space to bypass AMSI and Constrained Language mode in PowerShell.☆18Updated last year
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆15Updated 6 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago
- A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…☆17Updated 4 years ago
- A simple injector that uses LoadLibraryA☆17Updated 4 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 3 years ago
- Remote Thread Injection by C# + Delegate Techniques☆12Updated last year
- Overwrite MBR and add own custom message☆15Updated 4 years ago
- A more advanced free and open .NET obfuscator using dnlib.☆10Updated 2 years ago
- A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…☆34Updated 5 years ago
- Bind shell that uses Named Pipes as transport and execute PowerShell code through Runspaces.☆16Updated 5 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆38Updated 3 years ago
- Automatic DLL comment link generation and explaination of the DLL Proxying techniques☆10Updated 3 years ago
- Disabling Windows Defender & downloading payload☆20Updated 4 years ago
- Multipurpose malware framework☆23Updated 3 years ago
- PoC Ransomware with Coinbase Commerce integration built on C# .NET Framework (console) and PHP☆24Updated 2 years ago
- DarkRats Standalone HVNC☆24Updated 2 years ago
- Another AMSI bypass - but in C++.☆23Updated last year
- PoC code from blog☆16Updated 5 years ago
- Making Shellcode fully undetectable using uuid☆23Updated 3 years ago
- Extended Process List (Search functionality)☆29Updated 4 years ago
- Files for generating a C# source file that allows for memory-mapping "niceness" and then executing said "niceness"☆31Updated 6 years ago
- C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.☆35Updated 3 years ago
- ☆12Updated 4 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆18Updated 3 years ago
- NativePayload_TiACBT (Remote Thread Injection + C# Async Method + CallBack Functions Technique)☆14Updated last year
- Techniques that i have used to evade anti-virus during pen tests.☆13Updated 6 years ago