gushmazuko / WinBypass

Related projects: ⓘ

• Mr-Un1k0d3r / Shellcoding
  Shellcoding utilities
  ☆216Updated 3 years ago
• FSecureLABS / Ninjasploit
  A meterpreter extension for applying hooks to avoid windows defender memory scans
  ☆237Updated 4 years ago
• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆169Updated 4 years ago
• sailay1996 / magnifier0day
  Windows 10 Privilege Escalation (magnifier.exe) via Dll Search Order Hijacking
  ☆136Updated 4 years ago
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆228Updated last year
• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆250Updated 5 years ago
• med0x2e / NoAmci
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆213Updated 4 years ago
• Mr-Un1k0d3r / MaliciousDLLGenerator
  DLL Generator for side loading attack
  ☆165Updated 5 years ago
• MinervaLabsResearch / CoffeeShot
  CoffeeShot: Avoid Detection with Memory Injection
  ☆75Updated 6 years ago
• itm4n / CDPSvcDllHijacking
  Windows 10 CDPSvc DLL Hijacking - From LOCAL SERVICE to SYSTEM
  ☆113Updated 4 years ago
• Und3rf10w / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆224Updated last year
• johnjohnsp1 / Shellcode-Via-HTA
  How To Execute Shellcode via HTA
  ☆135Updated 6 years ago
• nettitude / Invoke-PowerThIEf
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆130Updated 6 years ago
• realoriginal / ppdump-public
  ☆131Updated this week
• offsecginger / AggressorScripts
  Various Aggressor Scripts I've Created.
  ☆146Updated 2 years ago
• karttoon / trigen
  Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.
  ☆199Updated 7 years ago
• outflanknl / NetshHelperBeacon
  Example DLL to load from Windows NetShell
  ☆175Updated 7 years ago
• b4rtik / SharpMiniDump
  Create a minidump of the LSASS process from memory
  ☆254Updated last year
• b4rtik / metasploit-execute-assembly
  Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
  ☆342Updated 4 years ago
• b4rtik / RedPeanut
  RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
  ☆331Updated last year
• itm4n / SysTracingPoc
  ☆106Updated this week
• Mr-Un1k0d3r / PoisonHandler
  lateral movement techniques that can be used during red team exercises
  ☆265Updated 4 years ago
• decoder-it / powershellveryless
  Constrained Language Mode + AMSI bypass all in one
  ☆152Updated 5 years ago
• arntsonl / calc_security_poc
  A sample of proof of concept scripts that run Calc.exe with full source code.
  ☆89Updated 2 weeks ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆172Updated 5 years ago
• xorrior / raven
  CobaltStrike External C2 for Websockets
  ☆194Updated 5 years ago
• mgeeky / RobustPentestMacro
  This is a rich-featured Visual Basic macro code for use during Penetration Testing assignments, implementing various advanced post-exploi…
  ☆143Updated 2 years ago
• 3gstudent / CLR-Injection
  Use CLR to inject all the .NET apps
  ☆183Updated 3 years ago
• itm4n / Ikeext-Privesc
  ☆132Updated this week