Ghosting-AMSI
☆18Apr 30, 2025Updated 10 months ago
Alternatives and similar repositories for Ghosting-AMSI
Users that are interested in Ghosting-AMSI are comparing it to the libraries listed below
Sorting:
- Sleep obfuscation in golang based on ekko☆14Jan 16, 2024Updated 2 years ago
- CISOinaBox is a free community framework to organize tools, templates, and resources to help equip new CISOs and set them up for success.…☆31Updated this week
- A simple dnSpy extension for easily renaming members.☆20May 27, 2023Updated 2 years ago
- Frida plugin for Binary Ninja☆20Jan 12, 2025Updated last year
- A Proof-of-Concept implementation of Reflective DLL Injection (RDI) specifically for Windows on ARM64. Demonstrates PEB access via the x1…☆34May 30, 2025Updated 9 months ago
- A collection of my yara rules☆34Jul 11, 2023Updated 2 years ago
- A port of classic netcat to C#☆34Jan 21, 2023Updated 3 years ago
- Test AMSI Provider implementation in C#☆43Dec 18, 2024Updated last year
- A python tool to generate an Excel file linking the list of cracked accounts and their LDAP attributes.☆12Jan 31, 2025Updated last year
- Folder Or File Delete to Get System Shell on Current Session Desktop☆47Jan 14, 2025Updated last year
- ☆136Feb 11, 2025Updated last year
- Learn how to intercept flutter apps☆23Jan 19, 2024Updated 2 years ago
- Rust 重构的 sRDI☆17Sep 9, 2024Updated last year
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Jan 25, 2025Updated last year
- The Python programming language☆16Nov 22, 2022Updated 3 years ago
- D/Invoke implementation in Nim☆100Jun 8, 2022Updated 3 years ago
- Beacon Debugger☆55Oct 28, 2024Updated last year
- Links or additional data to some researches☆14May 24, 2019Updated 6 years ago
- The backend server handling API requests and task management☆59Updated this week
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass ETW scanning by redirecting ETW calls to…☆45Jun 1, 2025Updated 9 months ago
- Obex – Blocking unwanted DLLs in user mode☆282Sep 18, 2025Updated 6 months ago
- demo unhooking functions in ntdll☆28Jul 15, 2025Updated 8 months ago
- ☆53Sep 23, 2025Updated 5 months ago
- A fucking real shellcode loader with a GUI. Work-in-Progress.☆82Jun 25, 2025Updated 8 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆195Feb 6, 2025Updated last year
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆80Nov 18, 2024Updated last year
- CVE-2025-31644: Command Injection in Appliance mode in F5 BIG-IP☆24May 11, 2025Updated 10 months ago
- Convenience routines for working with the Unicorn emulator in Python☆31Feb 2, 2025Updated last year
- ☆22Dec 22, 2020Updated 5 years ago
- Hunting and injecting RWX 'mockingjay' DLLs in pure nim☆60Dec 11, 2024Updated last year
- AppLocker Policy Generator☆26Aug 25, 2025Updated 6 months ago
- The project main objective is to develop a multiplatform Python program obfuscation tool which can easily safeguard the source code for t…☆14Feb 20, 2025Updated last year
- Identifies metadata of .NET binary files.☆21Apr 3, 2024Updated last year
- Shellcode loader☆101Nov 24, 2024Updated last year
- Minidump loader for Binary Ninja☆15Sep 25, 2025Updated 5 months ago
- An automatic unpacker and logger for DotNet Framework targeting files�☆264Aug 23, 2023Updated 2 years ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆55May 12, 2025Updated 10 months ago
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆234Feb 12, 2025Updated last year
- ☆23Mar 17, 2024Updated 2 years ago