Alternatives and similar repositories for AVbypass:

Users that are interested in AVbypass are comparing it to the libraries listed below

• ThunderGunExpress / CustomStager
  ☆16Updated 6 years ago
• ceramicskate0 / AddReferenceDotRedTeam
  A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…
  ☆17Updated 4 years ago
• rvrsh3ll / UACSilentCleanup
  ☆14Updated 5 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 6 years ago
• Souhardya / Custom-Exploits
  Random stuff
  ☆16Updated 6 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆16Updated 5 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• Arno0x / MultibyteEncodedShellcode
  An AV evasion technique using multibyte xor encoding of shellcode
  ☆8Updated 8 years ago
• DanMcInerney / MsfWrapper
  Asynchronous MSF RPC API wrapper
  ☆20Updated 2 years ago
• curi0usJack / psfire
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆14Updated 7 years ago
• trustedsec / inProc_Evade_Get-InjectedThread
  PoC code from blog
  ☆16Updated 5 years ago
• DamonMohammadbagher / NativePayload_HTTP
  Data Exfiltration via HTTP Traffic (C# and Shell Script)
  ☆17Updated last year
• jasondrawdy / ShellGen
  Dynamic and extensible shell code generator with multiple output types which can be formatted in binary, hexadecimal, and the typical she…
  ☆19Updated 4 years ago
• NotoriousRebel / ConfigPersist
  Modifies machine.config for persistence after installing signed .net assembly onto GAC
  ☆12Updated 2 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 7 years ago
• ajinabraham / Exploit-Research-Ported
  Exploit Research & Development - Ported Exploits
  ☆11Updated 7 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆27Updated 5 years ago
• vletoux / Bluekeep-scanner
  BlueKeep powershell scanner (based on c# code)
  ☆38Updated 5 years ago
• jaredhaight / ReflectCmd
  A simple reflective dll example
  ☆19Updated 8 years ago
• operatorequals / SMBRat
  A Windows Remote Administration Tool in Visual Basic with UNC paths
  ☆23Updated 5 years ago
• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆27Updated 7 years ago
• vysecurity / ShellcodeConversion
  A collection of shell code conversion scripts that I have written over time for repetitive tasks
  ☆18Updated 5 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆17Updated 6 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• matterpreter / misc
  Collection of things I've written on pentests to make life easier.
  ☆16Updated 5 years ago
• 3gstudent / SCTPersistence
  Create COM Objects backed by Scripts, not DLLs
  ☆9Updated 7 years ago
• Powershell-Offense / Post-Exploitation
  \ PowerAvails Powershell /
  ☆12Updated 6 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago