netskopeoss / jarm_randomizer
This tool was open sourced as part of JARM Randomizer: Evading JARM Fingerprinting for HiTB Amsterdam 2021.
☆48Updated last year
Alternatives and similar repositories for jarm_randomizer:
Users that are interested in jarm_randomizer are comparing it to the libraries listed below
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 3 years ago
- I used this to see if an EDR is running in Safe Mode☆36Updated 4 years ago
- ☆20Updated 2 years ago
- A library to parse, modify, and implement Malleable C2 profiles☆21Updated 6 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Updated 3 years ago
- A little implant which SSH's back with a shell☆37Updated 3 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Updated 2 years ago
- Log converter from CS log to Ghostwriter CSV☆30Updated 4 years ago
- ☆18Updated 3 years ago
- Lightweight C# windows agent for Apfell☆17Updated 5 years ago
- Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.☆47Updated 4 years ago
- A simple BOF implementation of klist using Windows API☆32Updated 2 years ago
- ☆19Updated 4 years ago
- Cobalt Strike Get clipboard plugin☆12Updated last year
- Is this IP a C2 server?☆28Updated 5 years ago
- Terminate the eventlog thread to disable the windows eventlog☆20Updated 5 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Updated last year
- ☆13Updated last year
- treafik fronted c2 examples☆26Updated 4 years ago
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆54Updated 3 years ago
- EDR Evasion - Combination of SwampThing - TikiTorch☆25Updated 4 years ago
- leaking net-ntlm with webdav☆25Updated 4 years ago
- Just another useless C2 occupying space in some HDD somewhere.☆20Updated last year
- Run PowerShell command without invoking powershell.exe☆35Updated 3 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- PoC for CVE-2020-11651☆6Updated 4 years ago
- Alternative Mimikatz LSASS DUMPER☆12Updated 5 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆12Updated 2 years ago
- Beacon payload using AV bypass method from https://github.com/fullmetalcache/CsharpMMNiceness and shellcode generated from https://github…☆20Updated 4 years ago
- ☆14Updated 3 years ago