Alternatives and similar repositories for HostingCLR-Bypass-AMSI-Windows-Defender

Users that are interested in HostingCLR-Bypass-AMSI-Windows-Defender are comparing it to the libraries listed below

• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆17Updated 7 years ago
• melardev / XeytanWin32-RAT
  WORK IN PROGRESS. RAT written in C++ using Win32 API
  ☆20Updated 6 years ago
• d35ha / ShellInjector
  Execute an arbitrary command within the context of another process
  ☆20Updated 6 years ago
• 0r13lc0ch4v1 / HideFromAMSI
  Bypass AMSI and Executing PowerShell scripts from C# - using CyberArk's method to bypass AMSI
  ☆31Updated 5 years ago
• HFaeiro / Remote-Admin-Tool
  Simple remote administration tool. Written in c++ and MASM.
  ☆18Updated 7 years ago
• decay88 / Tengri_Shellcode_Loader
  Encrypted Shellcode Loader Generator
  ☆22Updated 6 years ago
• d35ha / RunPE
  An example of PE hollowing injection technique
  ☆25Updated 6 years ago
• darsigovrustam / KillAV
  The project uses popular anti-virus protection bypass techniques
  ☆12Updated 6 years ago
• dsnezhkov / HandsFreeCOM
  Self-Loading Registration Free COM Functions
  ☆11Updated 6 years ago
• 1M50RRY / runpe-native-loader
  Loader and RunPE file executer
  ☆18Updated 6 years ago
• riskydissonance / Ridgway
  A quick tool for hiding a new process running shellcode.
  ☆58Updated 5 years ago
• claissg / remote_amsi_bypass
  Kill AMSI in a remote process PoC
  ☆10Updated 7 years ago
• rtcrowley / Offensive-Netsh-Helper
  Maintain Windows Persistence with an evil Netshell Helper DLL
  ☆12Updated 7 years ago
• MalwareMechanic / RISCYpacker
  Process Hollowing Packer
  ☆29Updated 8 years ago
• idiotc4t / ReflectiveBase64DLL
  This is a project to receive Base64 data and decode it in process
  ☆15Updated 5 years ago
• hoangprod / COMHijacker
  Persistent through COM Hijacking
  ☆22Updated 6 years ago
• umair-7x / Remote-Access-Tool
  Access windows machine remotely on HTTP
  ☆12Updated 5 years ago
• rastating / slae
  The source code of the SLAE assignments documented at https://rastating.github.io/
  ☆24Updated 7 years ago
• AzAgarampur / byeintegrity4-uac
  Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers
  ☆18Updated 4 years ago
• d35ha / xKeLogger
  Kernel mode windows NT API logger
  ☆22Updated 6 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆40Updated 4 years ago
• BenjaminSoelberg / RunDLL-NG
  A better alternative to RunDLL32
  ☆33Updated 6 years ago
• SLAUC91 / DLLFinder
  Enumerate the DLLs/Modules using NtQueryVirtualMemory
  ☆32Updated 10 years ago
• guardicore / vmware_guest_auth_bypass
  Proof of concept of VMSA-2017-0012
  ☆41Updated 8 years ago
• ThunderGunExpress / Reflective_Schtasks
  ☆54Updated 7 years ago
• 0x00-0x00 / CVE-2019-1064
  CVE-2019-1064 Local Privilege Escalation Vulnerability
  ☆11Updated 6 years ago
• DiabloHorn / cliramdisk
  A reduced functionality cli client for the imdisk ram disk driver. To be used through a backdoor like meterpreter
  ☆24Updated 7 years ago
• ambray / DotNetReflectiveLoading
  ☆34Updated 8 years ago
• active-labs / Advisories
  ACTIVELabs Security Advisories
  ☆23Updated 4 years ago
• guitmz / msil-cecil-injection
  Injection of MSIL using Cecil
  ☆12Updated 10 years ago