lleon1435 / BypassAV
This map lists the essential techniques to bypass anti-virus and EDR
☆15Updated last year
Alternatives and similar repositories for BypassAV:
Users that are interested in BypassAV are comparing it to the libraries listed below
- A small red team course☆35Updated last year
- Situational Awareness script to identify how and where to run implants☆45Updated 2 months ago
- A repository with my code snippets for research/education purposes.☆49Updated last year
- ☆11Updated 2 months ago
- Brief writeup of post exploitation methodologies.☆17Updated last year
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated 8 months ago
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Updated last year
- ☆25Updated last year
- Items related to the RedELK workshop given at security conferences☆28Updated last year
- Cobalt Strike BOFS☆15Updated last year
- ☆15Updated last year
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- ☆46Updated 2 years ago
- IAT Unhooking proof-of-concept☆29Updated 10 months ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆30Updated 2 months ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- exfiltration/infiltration toolkit☆23Updated last year
- Discord C2 Profile for Mythic☆26Updated 9 months ago
- Reflective shellcode runners using obfuscated Win32 APIs in C# and C++ (GetProcAddress & GetModuleHandle). For penetration testing.☆11Updated 9 months ago
- A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.☆12Updated last year
- ☆43Updated 7 months ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆22Updated last month
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆35Updated 2 months ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆29Updated last year
- malleable profile generator GUI for Havoc☆56Updated last year
- ☆29Updated last year
- Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges☆21Updated 2 months ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆35Updated last year
- ☆51Updated last year
- Lifetime AMSI bypass.☆35Updated 7 months ago