Alternatives and similar repositories for InYourMems

Users that are interested in InYourMems are comparing it to the libraries listed below

• 0r13lc0ch4v1 / HideFromAMSI
  Bypass AMSI and Executing PowerShell scripts from C# - using CyberArk's method to bypass AMSI
  ☆31Updated 5 years ago
• DamonMohammadbagher / Videos-BypassingAVsByCSharp
  Video files for eBook: "Bypassing AVs by C#.NET Programming"
  ☆41Updated 2 years ago
• decay88 / Tengri_Shellcode_Loader
  Encrypted Shellcode Loader Generator
  ☆22Updated 6 years ago
• riskydissonance / Ridgway
  A quick tool for hiding a new process running shellcode.
  ☆57Updated 5 years ago
• darsigovrustam / KillAV
  The project uses popular anti-virus protection bypass techniques
  ☆12Updated 6 years ago
• misterch0c / BeaconTelegram
  Send message on Telegram when you get a new Cobalt Strike beacon
  ☆21Updated 5 years ago
• mdsecactivebreach / Browser-ExternalC2
  External C2 Using IE COM Objects
  ☆101Updated 6 years ago
• hoangprod / COMHijacker
  Persistent through COM Hijacking
  ☆22Updated 6 years ago
• DamonMohammadbagher / NativePayload_HTTP
  Data Exfiltration via HTTP Traffic (C# and Shell Script)
  ☆18Updated 2 years ago
• RythmStick / CVE-2019-1064
  CVE-2019-1064 Local Privilege Escalation Vulnerability
  ☆24Updated 6 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 7 years ago
• ThunderGunExpress / Reflective_Schtasks
  ☆54Updated 7 years ago
• crawl3r / FunWithAMSI
  A repo to hold any bypasses I work on/study/whatever
  ☆19Updated 4 years ago
• checkymander / CoreSploit
  Initial Commit of Coresploit
  ☆57Updated 3 years ago
• checkymander / TokenContextManipulation
  Code that can be used to create/steal/manipulate token contexts in a program. Can be implemented into other C# projects.
  ☆12Updated 6 years ago
• mobdk / VBA-DLL-WMI-EXECUTION
  Call your own DLL from VBA and execute code under process svchost.exe with WMI
  ☆12Updated 5 years ago
• fashionproof / CheckSafeBoot
  I used this to see if an EDR is running in Safe Mode
  ☆36Updated 4 years ago
• plackyhacker / PowerGhost
  A custom run space to bypass AMSI and Constrained Language mode in PowerShell.
  ☆20Updated 2 years ago
• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆16Updated 6 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆28Updated 5 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 8 years ago
• sailay1996 / SECOMN_EoP
  Sound Research SECOMN service Privilege Escalation (windows 10)
  ☆39Updated 5 years ago
• rmdavy / AMSI_Ordinal_Bypass
  Bypass AMSI and Defender using Ordinal Values
  ☆42Updated 5 years ago
• N4kedTurtle / HellsGatePoC
  ☆50Updated 5 years ago
• rvrsh3ll / UACSilentCleanup
  ☆14Updated 5 years ago
• DimopoulosElias / SimpleMimikatzObfuscator
  A set of commands to bypass Defender (and some other AVs)
  ☆20Updated 6 years ago
• trustedsec / inProc_Evade_Get-InjectedThread
  PoC code from blog
  ☆16Updated 5 years ago
• jfmaes / Backdoorplz
  adding a backdooruser using win32api
  ☆80Updated 5 years ago
• Souhardya / Catharsis
  Raw syscall implementations with Powershell
  ☆30Updated 6 years ago
• padovah4ck / RedSharp
  Penetration Test / Read Team - C# tools repository
  ☆57Updated 3 years ago