XaFF-XaFF / AMSI-BypassLinks
Rasta's mouse AMSI patch but with function that makes it undetectable.
☆13Updated 4 years ago
Alternatives and similar repositories for AMSI-Bypass
Users that are interested in AMSI-Bypass are comparing it to the libraries listed below
Sorting:
- Simple keylogger written in C# which is ready for modifications.☆14Updated 3 years ago
- A simple injector that uses LoadLibraryA☆18Updated 4 years ago
- A custom run space to bypass AMSI and Constrained Language mode in PowerShell.☆20Updated 2 years ago
- A more advanced free and open .NET obfuscator using dnlib.☆10Updated 2 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆15Updated 6 years ago
- Ransoblin (Ransomware Bokoblin)☆18Updated 4 years ago
- Obtain and parse SSL certificates☆10Updated 3 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago
- Overwrite MBR and add own custom message☆17Updated 5 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- ☆28Updated 4 years ago
- Send message on Telegram when you get a new Cobalt Strike beacon☆21Updated 5 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 4 years ago
- C# project to Reflectively load .Net assemblies in memory☆17Updated 11 months ago
- XOR crypt/decrypt using C#☆12Updated 4 years ago
- A C port of b33f's UrbanBishop☆38Updated 4 years ago
- C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.☆35Updated 3 years ago
- Automatic DLL comment link generation and explaination of the DLL Proxying techniques☆10Updated 3 years ago
- ☆12Updated 4 years ago
- Remote Desktop Protocol .NET Console Application for Authenticated Command Execution☆12Updated 5 years ago
- Extended Process List (Search functionality)☆29Updated 4 years ago
- A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…☆17Updated 5 years ago
- One gate to all syscalls!☆23Updated 3 years ago
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆12Updated 2 years ago
- ☆10Updated 3 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 5 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- A collection of random small Aggressor snippets that don't warrant their own repo☆23Updated 2 years ago
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆23Updated 3 years ago
- Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets☆12Updated 3 years ago