hegusung / AVSignSeek
Tool written in python3 to determine where the AV signature is located in a binary/payload
☆313Updated 7 years ago
Alternatives and similar repositories for AVSignSeek:
Users that are interested in AVSignSeek are comparing it to the libraries listed below
- UAC 0day, all day!☆277Updated 7 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆281Updated 7 years ago
- A PowerShell example of the Windows zero day priv esc☆324Updated 6 years ago
- Pazuzu: Reflective DLL to run binaries from memory☆214Updated 4 years ago
- A list of ways to execute code on Windows using legitimate Windows tools☆306Updated 5 years ago
- An attempt at Process Doppelgänging☆184Updated 7 years ago
- HTTP/S Beaconing Implant☆304Updated 7 years ago
- some pocs for antivirus evasion☆130Updated last year
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆368Updated last year
- Forward local or remote tcp ports through SMB pipes.☆295Updated 4 years ago
- A tool to detect and crash Cuckoo Sandbox☆292Updated 8 months ago
- Teaching old shellcode new tricks☆205Updated 7 years ago
- DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.☆148Updated 6 years ago
- Miscellaneous tools written in Python, mostly centered around shellcodes.☆146Updated 9 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆319Updated 7 years ago
- Cminer is a tool for enumerating the code caves in PE files.☆148Updated last year
- Search for code cave in all binaries☆278Updated 8 months ago
- (extensible) Data Exfiltration Toolkit (DET)☆160Updated 5 years ago
- WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application cont…☆352Updated 6 years ago
- Persisting in the Windows registry "invisibly"☆340Updated 6 years ago
- ☆229Updated 6 years ago
- DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.☆147Updated 5 years ago
- Python solutions for the HackSysTeam Extreme Vulnerable Driver☆151Updated 4 years ago
- Tool to make in memory man in the middle☆124Updated 6 years ago
- JavaScript Reversed TCP Meterpreter Stager☆137Updated 7 years ago
- A command line tool for creating malicious outlook rules☆161Updated 6 years ago
- DefCon24☆121Updated 8 years ago
- Client/Server scripts to transfer files over DNS. Client scripts are small and only use native tools on the host OS.☆209Updated 9 years ago
- Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…☆198Updated 7 years ago
- Patching ROP-encoded shellcodes into PEs☆184Updated 7 years ago