guibacellar / DNCILinks
DNCI - Dot Net Code Injector
☆148Updated 4 years ago
Alternatives and similar repositories for DNCI
Users that are interested in DNCI are comparing it to the libraries listed below
Sorting:
- Simple packer for arbitrary data using only .NET API calls. Produces a unique signature with every usage. Standalone program and library.…☆92Updated 6 years ago
- Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI☆236Updated last year
- .NET assembly local/remote loading/injection into memory.☆135Updated 5 years ago
- A set of scripts that demonstrate how to perform memory injection in C#☆314Updated 7 years ago
- Bare template for a Kernel Mode Driver☆51Updated 5 years ago
- Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.☆84Updated 5 years ago
- A PoC designed to bypass all usermode hooks in a WoW64 environment.☆150Updated 4 years ago
- C# code to run shellcode in a sneaky way☆90Updated 4 years ago
- Executable that mutates its own code☆377Updated 6 months ago
- Simple PoC demonstrating syscall execution in C#☆154Updated 5 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆158Updated 5 years ago
- Implementation of the .NET Profiler DLL hijack in C#☆98Updated 6 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆229Updated 6 years ago
- Use CLR to inject all the .NET apps☆184Updated 4 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆235Updated 5 years ago
- dem sharp donuts☆197Updated 2 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆217Updated 5 years ago
- ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …☆215Updated 2 years ago
- ☆281Updated 4 years ago
- A more stealthy variant of "DLL hollowing"☆347Updated last year
- Local privilege escalation PoC exploit for CVE-2019-16098☆193Updated 5 years ago
- Managed assembly shellcode generation☆271Updated 4 years ago
- RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.☆328Updated last year
- Example code for EDR bypassing☆150Updated 6 years ago
- Reflective PE loader for DLL injection☆175Updated 7 years ago
- A simple POC to demonstrate the power of .NET debugging for injection☆72Updated 4 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆188Updated 5 years ago
- Process reimaging proof of concept code☆96Updated 5 years ago
- Managed code hooking template.☆131Updated 3 years ago
- Process Doppelgänging☆157Updated 7 years ago