Alternatives and similar repositories for Invoke-PSObfuscation

Users that are interested in Invoke-PSObfuscation are comparing it to the libraries listed below

• sinfulz / JustEvadeBro
  JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
  ☆309Updated last year
• Octoberfest7 / XLL_Phishing
  XLL Phishing Tradecraft
  ☆424Updated 3 years ago
• sensepost / impersonate
  A windows token impersonation tool
  ☆309Updated 2 years ago
• rasta-mouse / AmsiScanBufferBypass
  Bypass AMSI by patching AmsiScanBuffer
  ☆269Updated 4 years ago
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆385Updated 10 months ago
• h4wkst3r / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆566Updated 3 years ago
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆430Updated last year
• cepxeo / dll4shell
  Shellcode launcher for AV bypass
  ☆217Updated last year
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆276Updated 4 years ago
• senzee1984 / Amsi_Bypass_In_2023
  Amsi Bypass payload that works on Windwos 11
  ☆377Updated 2 years ago
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆418Updated 3 years ago
• rasta-mouse / SharpC2
  Command and Control Framework written in C#
  ☆415Updated 2 years ago
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆416Updated 11 months ago
• georgesotiriadis / Chimera
  Automated DLL Sideloading Tool With EDR Evasion Capabilities
  ☆486Updated last year
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆257Updated 3 years ago
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆557Updated 6 months ago
• icyguider / LightsOut
  Generate an obfuscated DLL that will disable AMSI & ETW
  ☆328Updated last year
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆382Updated last year
• BC-SECURITY / Malleable-C2-Profiles
  Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.
  ☆379Updated 2 years ago
• Octoberfest7 / OSEP-Tools
  ☆276Updated 3 years ago
• Dec0ne / DavRelayUp
  DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
  ☆555Updated 2 years ago
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆370Updated 2 years ago
• NUL0x4C / HellShell
  transform your payload into ipv4/ipv6/mac arrays
  ☆189Updated 3 years ago
• Tylous / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆333Updated 2 years ago
• paranoidninja / Brute-Ratel-C4-Community-Kit
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆284Updated last year
• REDMED-X / OperatorsKit
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆642Updated last week
• klezVirus / chameleon
  PowerShell Script Obfuscator
  ☆565Updated last year
• zblurx / dploot
  DPAPI looting remotely and locally in Python
  ☆500Updated this week
• Bl4ckM1rror / FUD-UUID-Shellcode
  ☆330Updated 2 years ago
• ricardojoserf / TrickDump
  Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
  ☆504Updated 3 months ago