basharbachir / HostingCLR-Bypass-AMSI-Windows-DefenderLinks
☆11Updated 6 years ago
Alternatives and similar repositories for HostingCLR-Bypass-AMSI-Windows-Defender
Users that are interested in HostingCLR-Bypass-AMSI-Windows-Defender are comparing it to the libraries listed below
Sorting:
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆17Updated 7 years ago
- Encrypted Shellcode Loader Generator☆22Updated 6 years ago
- Bypass AMSI and Executing PowerShell scripts from C# - using CyberArk's method to bypass AMSI☆31Updated 5 years ago
- Execute an arbitrary command within the context of another process☆20Updated 6 years ago
- WORK IN PROGRESS. RAT written in C++ using Win32 API☆20Updated 6 years ago
- Simple remote administration tool. Written in c++ and MASM.☆18Updated 7 years ago
- An example of PE hollowing injection technique☆25Updated 6 years ago
- Kill AMSI in a remote process PoC☆10Updated 7 years ago
- Maintain Windows Persistence with an evil Netshell Helper DLL☆12Updated 7 years ago
- ☆54Updated 7 years ago
- Loader and RunPE file executer☆18Updated 6 years ago
- ☆45Updated 7 years ago
- ☆14Updated 6 years ago
- The project uses popular anti-virus protection bypass techniques☆12Updated 6 years ago
- The source code of the SLAE assignments documented at https://rastating.github.io/☆24Updated 7 years ago
- Self-Loading Registration Free COM Functions☆11Updated 5 years ago
- Several self-defense shellcodes☆23Updated 6 years ago
- Kernel mode windows NT API logger☆22Updated 6 years ago
- Hide Mimikatz From Process Lists☆18Updated 10 years ago
- Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers☆18Updated 4 years ago
- InsecurePowerShellHost is a .NET Core host process for InsecurePowerShell, a version of PowerShell Core v6.0.0 with key security features…☆31Updated 7 years ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 5 years ago
- A quick tool for hiding a new process running shellcode.☆57Updated 5 years ago
- CVE-2019-1064 Local Privilege Escalation Vulnerability☆11Updated 6 years ago
- Use to generate DLL through Visual Studio☆20Updated 8 years ago
- Access windows machine remotely on HTTP☆12Updated 4 years ago
- Two C# RunPE's capable of x86 and x64 injections☆11Updated 6 years ago
- Proof of concept of VMSA-2017-0012☆41Updated 8 years ago
- Persistent through COM Hijacking☆22Updated 6 years ago
- ☆31Updated 5 years ago