hegusung / AVSignSeek
Tool written in python3 to determine where the AV signature is located in a binary/payload
☆314Updated 7 years ago
Alternatives and similar repositories for AVSignSeek:
Users that are interested in AVSignSeek are comparing it to the libraries listed below
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆282Updated 7 years ago
- Teaching old shellcode new tricks☆205Updated 7 years ago
- UAC 0day, all day!☆278Updated 7 years ago
- Pazuzu: Reflective DLL to run binaries from memory☆215Updated 4 years ago
- some pocs for antivirus evasion☆131Updated last year
- A PowerShell example of the Windows zero day priv esc☆326Updated 6 years ago
- An attempt at Process Doppelgänging☆182Updated 7 years ago
- Cminer is a tool for enumerating the code caves in PE files.☆149Updated 2 years ago
- HTTP/S Beaconing Implant☆306Updated 7 years ago
- DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.☆150Updated 6 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆369Updated last year
- A tool to detect and crash Cuckoo Sandbox☆293Updated 9 months ago
- Python solutions for the HackSysTeam Extreme Vulnerable Driver☆151Updated 4 years ago
- DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.☆147Updated 5 years ago
- A list of ways to execute code on Windows using legitimate Windows tools☆307Updated 5 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Updated 7 years ago
- ☆229Updated 6 years ago
- Forward local or remote tcp ports through SMB pipes.☆295Updated 4 years ago
- Miscellaneous tools written in Python, mostly centered around shellcodes.☆147Updated 9 years ago
- IDPS & SandBox & AntiVirus STEALTH KILLER. MorphAES is the world's first polymorphic shellcode engine, with metamorphic properties and ca…☆321Updated 2 years ago
- libpcap based ICMP encrypted backdoor for linux.☆130Updated 4 years ago
- DNS-Persist is a post-exploitation agent which uses DNS for command and control.☆210Updated 7 years ago
- Open Source Office Malware Generation & Polymorphic Engine for Red Teams and QA testing☆95Updated 8 years ago
- Search for code cave in all binaries☆278Updated 9 months ago
- Patching ROP-encoded shellcodes into PEs☆184Updated 7 years ago
- JavaScript Reversed TCP Meterpreter Stager☆137Updated 7 years ago
- WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application cont…☆353Updated 6 years ago
- A "tiny" meterpreter stager☆128Updated 5 years ago
- A one-click tool to inject jobs into the BITS queue (Background Intelligent Transfer Service), allowing arbitrary program execution as th…☆99Updated 5 years ago
- HORSEPILL rootkit PoC☆226Updated 8 years ago