jborean93/AmsiProvider external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jborean93/AmsiProvider

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jborean93/AmsiProvider)

Close

jborean93 / AmsiProviderView on GitHubMore

• External links
• Readme badge

Test AMSI Provider implementation in C#

☆45Dec 18, 2024Updated last year

Alternatives and similar repositories for AmsiProvider

Users that are interested in AmsiProvider are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jsecu / ModTask

  View on GitHub
  ☆52Mar 30, 2026Updated last month
• Teach2Breach / snapinject_rs

  View on GitHub
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Jan 25, 2025Updated last year
• ZephrFish / QoL-BOFs

  View on GitHub
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆139Dec 7, 2025Updated 5 months ago
• Leo4j / PowerDACL

  View on GitHub
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆62Feb 4, 2026Updated 3 months ago
• t94j0 / sddl_py

  View on GitHub
  Parse SDDL strings
  ☆37Apr 1, 2024Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• voidvxvi / EnableAllTokenPrivs

  View on GitHub
  Enable or Disable TokenPrivilege(s)
  ☆15May 17, 2024Updated 2 years ago
• y00ga-sec / Trustify

  View on GitHub
  Attack Active Directory Trusts with a single tool
  ☆13Jan 15, 2025Updated last year
• winsecurity / AMSI-Bypass-HWBP

  View on GitHub
  ☆26Aug 11, 2025Updated 9 months ago
• nyxgeek / bad_guest

  View on GitHub
  ☆15Jun 27, 2024Updated last year
• sud0Ru / impacket-dcom

  View on GitHub
  Adjusted version of the impacket-dcomexec script to work against Windows 10
  ☆18Oct 13, 2025Updated 7 months ago
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆109Aug 21, 2024Updated last year
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆133Jan 23, 2025Updated last year
• kozmer / aad-bofs

  View on GitHub
  ☆139Nov 17, 2025Updated 6 months ago
• redr0nin / Serenity

  View on GitHub
  C# DInvoke Shellcode Runner
  ☆31Feb 10, 2025Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Teach2Breach / dll2shell

  View on GitHub
  converts sRDI compatible dlls to shellcode
  ☆38Jan 20, 2025Updated last year
• wabzsy / gonut

  View on GitHub
  Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.
  ☆68Jul 29, 2023Updated 2 years ago
• YOLOP0wn / EchoDrv

  View on GitHub
  Exploitation of echo_driver.sys
  ☆170Sep 16, 2023Updated 2 years ago
• CCob / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆16Dec 6, 2024Updated last year
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆385Dec 13, 2024Updated last year
• Shrfnt77 / SharpCoercer

  View on GitHub
  SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…
  ☆58Jul 13, 2025Updated 10 months ago
• WildByDesign / ACLViewer

  View on GitHub
  ACL Viewer for Windows
  ☆133May 4, 2025Updated last year
• obikuro / Sato

  View on GitHub
  SATO is a PowerShell tool focuses on providing flexible, multi-grant type support for obtaining, managing, and analyzing Azure tokens.
  ☆24Nov 24, 2025Updated 6 months ago
• cod3nym / Ghosting-AMSI

  View on GitHub
  Ghosting-AMSI
  ☆18Apr 30, 2025Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• jojonas / SharpSAMDump

  View on GitHub
  SAM Dumping in C#
  ☆55Nov 27, 2025Updated 5 months ago
• klezVirus / SharpLdapRelayScan

  View on GitHub
  C# Port of LdapRelayScan
  ☆93Nov 26, 2025Updated 5 months ago
• dmcxblue / AzureFunctionRedirector

  View on GitHub
  ☆49Apr 9, 2025Updated last year
• netbiosX / AMSI-Provider

  View on GitHub
  A fake AMSI Provider which can be used for persistence.
  ☆156May 16, 2021Updated 5 years ago
• wolfcod / lsassdump

  View on GitHub
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆87Oct 18, 2024Updated last year
• Faran-17 / EarlyBird-APC-Injection

  View on GitHub
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆36Oct 31, 2023Updated 2 years ago
• 0xedh / dumpguard_bof

  View on GitHub
  Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.
  ☆215Jan 6, 2026Updated 4 months ago
• Neo-Maoku / MultiTshProxy

  View on GitHub
  tsh多终端代理通信
  ☆19Feb 26, 2025Updated last year
• voidvxvi / HellBunny

  View on GitHub
  Shellcode loader written in C and Assembly utilizing direct or indirect syscalls to evade UM EDR hooks
  ☆141Dec 22, 2024Updated last year
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• Leo4j / ShellGen

  View on GitHub
  PowerShell script to generate ShellCode in various formats
  ☆46Sep 25, 2024Updated last year
• tehstoni / tryharder

  View on GitHub
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆96Oct 7, 2024Updated last year
• silentwarble / PIC-Library

  View on GitHub
  A collection of position independent coding resources
  ☆116Nov 15, 2025Updated 6 months ago
• ZephrFish / HelloJackHunter

  View on GitHub
  Research into WinSxS binaries and finding hijackable paths
  ☆31Dec 7, 2025Updated 5 months ago
• dmcxblue / AzureRedirector

  View on GitHub
  A C# project that builds a Web Application which redirects all HTTPS
  ☆26Feb 11, 2025Updated last year
• CodeXTF2 / WebcamBOF

  View on GitHub
  Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options
  ☆160Mar 26, 2025Updated last year
• nullenc0de / trust-validator

  View on GitHub
  Validates priv escalation of AD trusts
  ☆47Apr 1, 2025Updated last year