michaelweber / CSharpSourceObfuscator
A C# Solution Source Obfuscator for avoiding AV signatures with minimal user interaction. Powered by the Roslyn C# library.
☆69Updated 4 years ago
Related projects: ⓘ
- ☆105Updated last year
- ☆122Updated 9 months ago
- A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …☆151Updated last year
- Lateral Movement via the .NET Profiler☆74Updated 3 months ago
- C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.☆101Updated last year
- Simple BOF to read the protection level of a process☆101Updated last year
- Tool for playing with Windows Access Token manipulation.☆50Updated last year
- Patch AMSI and ETW in remote process via direct syscall☆78Updated 2 years ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆32Updated 8 months ago
- Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…☆106Updated 11 months ago
- ☆99Updated 2 weeks ago
- I have documented all of the AMSI patches that I learned till now☆66Updated last year
- Find DLLs with RWX section☆74Updated last year
- Halos Gate-based NTAPI Unhooker☆49Updated 2 years ago
- A collection of (even more) alternative shellcode callback methods in CSharp☆64Updated 7 months ago
- Cobalt Strike UDRL for memory scanner evasion.☆34Updated 9 months ago
- ☆113Updated 11 months ago
- Threadless shellcode injection tool☆56Updated last month
- Rewrite to fit my needs☆25Updated last month
- My implementation of Halo's Gate technique in C#☆51Updated 2 years ago
- ☆94Updated 11 months ago
- Lockless BOF☆62Updated 7 months ago
- UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.☆44Updated 4 months ago
- ☆61Updated 2 years ago
- ☆132Updated last year
- ☆116Updated last year
- ☆60Updated this week
- Implant drop-in for EDR testing☆126Updated 10 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆50Updated 6 months ago
- Beacon Object File allowing creation of Beacons in different sessions.☆73Updated 2 years ago