govolution / avepoc
some pocs for antivirus evasion
☆130Updated last year
Alternatives and similar repositories for avepoc:
Users that are interested in avepoc are comparing it to the libraries listed below
- Open Source Office Malware Generation & Polymorphic Engine for Red Teams and QA testing☆95Updated 7 years ago
- JavaScript Reversed TCP Meterpreter Stager☆137Updated 7 years ago
- Teaching old shellcode new tricks☆205Updated 7 years ago
- A "tiny" meterpreter stager☆126Updated 5 years ago
- VBS Reversed TCP Meterpreter Stager☆86Updated 7 years ago
- Bypassing User Account Control (UAC) using TpmInit.exe☆127Updated 8 years ago
- ☆73Updated 2 years ago
- NCC Group's analysis and exploitation of CVE-2017-8759 along with further refinements☆96Updated 7 years ago
- DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.☆148Updated 6 years ago
- VBA Reversed TCP Meterpreter Stager☆62Updated 6 years ago
- Pazuzu: Reflective DLL to run binaries from memory☆214Updated 4 years ago
- Yet another AV evasion tool☆119Updated 3 years ago
- POC of code that downloads and executes shellcode in memory.☆80Updated 10 years ago
- Platform independent peCloak fork based on Capstone☆103Updated 8 years ago
- ☆138Updated 7 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆135Updated 7 years ago
- A Generic Windows Memory Scraping Tool☆70Updated 7 years ago
- ☆113Updated 7 years ago
- DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.☆147Updated 5 years ago
- PoC dlls for Task Scheduler COM Hijacking☆92Updated 8 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆103Updated 7 years ago
- Tool to make in memory man in the middle☆124Updated 6 years ago
- Tool written in python3 to determine where the AV signature is located in a binary/payload☆313Updated 6 years ago
- Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.☆131Updated 11 years ago
- MS17-012 - COM Session Moniker EoP Exploit running within MSBuild.exe☆59Updated 7 years ago
- Generates anti-sandbox analysis HTA files without payloads☆118Updated 7 years ago
- Python solutions for the HackSysTeam Extreme Vulnerable Driver☆151Updated 3 years ago
- Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)☆103Updated 4 years ago
- Simple tool to automate adding shellcode to PE files☆49Updated 6 years ago
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆127Updated 6 years ago