o1mate / AppLocker-Bypass
Bypassing AppLocker with C#
☆138Updated 3 years ago
Alternatives and similar repositories for AppLocker-Bypass:
Users that are interested in AppLocker-Bypass are comparing it to the libraries listed below
- Koppeling x Metatwin x LazySign☆206Updated 3 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆226Updated 3 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆238Updated 3 years ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆187Updated 3 years ago
- Weaponising C# - Fundamentals Training Content☆70Updated 3 years ago
- DLL Hijack Search Order Enumeration BOF☆146Updated 3 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆230Updated 2 years ago
- WNF Code Execution Library Using C#☆108Updated 4 years ago
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆121Updated 3 years ago
- Hookers are cooler than patches.☆168Updated 3 years ago
- Start new PowerShell without etw and amsi in pure nim☆157Updated 3 years ago
- ☆111Updated last year
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆256Updated 2 years ago
- A fake AMSI Provider which can be used for persistence.☆147Updated 3 years ago
- C# version of MDSec's ParallelSyscalls☆139Updated 3 years ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2☆181Updated 2 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆296Updated 2 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆145Updated 4 years ago
- A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn☆100Updated 2 years ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆119Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆252Updated last year
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆102Updated 2 years ago
- Extendable payload obfuscation and delivery framework☆141Updated 2 years ago
- ☆112Updated 2 years ago
- pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…☆137Updated last year
- Remove API hooks from a Beacon process.☆268Updated 3 years ago
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆329Updated 3 years ago
- ☆69Updated 3 years ago
- POC tools for exploring SMB over QUIC protocol☆121Updated 2 years ago
- Fully modular persistence framework☆251Updated last year