jthuraisamy / av-fingerprintsLinks
Antivirus Emulator Fingerprints
☆29Updated 7 years ago
Alternatives and similar repositories for av-fingerprints
Users that are interested in av-fingerprints are comparing it to the libraries listed below
Sorting:
- ☆33Updated 6 years ago
- ☆45Updated 7 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 5 years ago
- ☆16Updated 4 years ago
- Shim database persistence (Fin7 TTP)☆37Updated 5 years ago
- ☆11Updated 6 years ago
- A tool to create COM class/interface relationships in neo4j☆50Updated 3 years ago
- ☆37Updated 6 years ago
- A fork of https://github.com/SafeBreach-Labs/pinjectra with a practical implementation of Stack Bombing☆29Updated 5 years ago
- PoC code from blog☆16Updated 5 years ago
- ☆24Updated 4 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆43Updated 4 years ago
- Automate AV evasion by calling AMSI☆87Updated 2 years ago
- medium-rare☆28Updated 5 years ago
- Visual Studio (C++) Solution Template for Payloads☆18Updated 5 years ago
- ☆42Updated 6 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆15Updated 5 years ago
- Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog☆13Updated 5 years ago
- ☆31Updated 5 years ago
- ☆36Updated 3 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Updated 6 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆77Updated 5 years ago
- ☆28Updated 6 years ago
- A repository where I share my injection implemintations☆29Updated 5 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆34Updated 5 years ago
- ☆28Updated 7 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆16Updated 7 years ago
- C# code to run PIC using CreateThread☆17Updated 6 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆42Updated 6 years ago