epi052 / rustdsplit
At some point, I learned about a method to perform a binary search on a file in order to identify its AV signature and change it to bypass signature-based AV. The tool I used back then is gone, so I wrote this.
☆35Updated 4 years ago
Alternatives and similar repositories for rustdsplit:
Users that are interested in rustdsplit are comparing it to the libraries listed below
- MiniDump a process in memory with rust☆36Updated 3 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆22Updated 4 years ago
- PoC for CVE-2021-4034 dubbed pwnkit☆34Updated 3 years ago
- Dumping credentials through windbg and pykd☆40Updated last year
- Execute Mimikatz with different technique☆51Updated 3 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Updated 3 years ago
- My experiments in weaponizing Nim (https://nim-lang.org/)☆17Updated 2 years ago
- ☆12Updated 4 years ago
- ☆55Updated 3 years ago
- Bypass Constrained Language Mode in PowerShell☆27Updated 5 years ago
- ☆17Updated 4 years ago
- Malware campaigns and APTs research by BlackArrow☆18Updated 4 years ago
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆23Updated 2 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago
- Python 3 server used to control SK8RAT implant☆36Updated 4 years ago
- Exploits made practicing for OSCE☆23Updated 4 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆20Updated 5 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- AMSI Bypass Via the Heap☆106Updated 4 years ago
- AMSI detection PoC☆31Updated 4 years ago
- File Write Weapon for Privilege Escalation To get SYSTEM☆17Updated 4 years ago
- ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)☆23Updated 2 years ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆40Updated 3 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 4 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆62Updated 3 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- Generate droppers with encrypted payloads automatically.☆53Updated 3 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- ☆10Updated 4 years ago