gh0x0st / Invoke-PSObfuscationLinks
An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.
☆275Updated 3 years ago
Alternatives and similar repositories for Invoke-PSObfuscation
Users that are interested in Invoke-PSObfuscation are comparing it to the libraries listed below
Sorting:
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆310Updated last year
- Materials for the workshop "Red Team Ops: Havoc 101"☆386Updated 11 months ago
- A windows token impersonation tool☆310Updated 2 years ago
- XLL Phishing Tradecraft☆424Updated 3 years ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆569Updated 3 years ago
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆431Updated last year
- Command and Control Framework written in C#☆417Updated 2 years ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆384Updated last year
- A User Impersonation tool - via Token or Shellcode injection☆419Updated 3 years ago
- Shellcode launcher for AV bypass☆217Updated last year
- Amsi Bypass payload that works on Windwos 11☆377Updated 2 years ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆556Updated 2 years ago
- Protected Process Dumper Tool☆564Updated 2 years ago
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…☆561Updated 7 months ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆491Updated last year
- Bypass AMSI by patching AmsiScanBuffer☆272Updated 4 years ago
- Kill AV/EDR leveraging BYOVD attack☆373Updated 2 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆336Updated 2 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 3 years ago
- Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)☆675Updated 4 months ago
- transform your payload into ipv4/ipv6/mac arrays☆192Updated 3 years ago
- PowerShell Constrained Language Mode Bypass☆280Updated 4 years ago
- 🍊 Orange Tsai EventViewer RCE☆189Updated 3 years ago
- Generate an obfuscated DLL that will disable AMSI & ETW☆329Updated last year
- Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8☆354Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆506Updated 4 months ago
- ☆470Updated 9 months ago
- Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol☆264Updated 2 years ago
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆419Updated last year
- ☆332Updated 2 years ago