pathtofile / SimpleAmsiProvider
A simple provider to analyse what gets passed into Microsoft's Anti-Malware Scan Interface
☆15Updated 5 years ago
Alternatives and similar repositories for SimpleAmsiProvider:
Users that are interested in SimpleAmsiProvider are comparing it to the libraries listed below
- ☆47Updated 3 years ago
- A tool to create COM class/interface relationships in neo4j☆48Updated 2 years ago
- ☆24Updated 3 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆51Updated 6 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆51Updated 3 years ago
- Playing with PE's and Building Structures by Hand☆22Updated 2 years ago
- POC code to crash Windows Event Logger Service☆26Updated 4 years ago
- A C port of b33f's UrbanBishop☆38Updated 4 years ago
- ☆20Updated 3 years ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 4 years ago
- Miscellaneous examples for use with Cobalt Strike Beacon☆10Updated 4 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆74Updated 5 years ago
- ☆16Updated 3 years ago
- ☆14Updated 4 years ago
- ☆11Updated 5 years ago
- ☆16Updated 3 years ago
- PoC code from blog☆16Updated 4 years ago
- ☆28Updated 7 years ago
- ☆31Updated 4 years ago
- Visual Studio (C++) Solution Template for Payloads☆18Updated 5 years ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 3 years ago
- really ?☆12Updated last year
- ☆15Updated 4 years ago
- ☆18Updated 3 years ago
- ☆32Updated 7 years ago
- ☆35Updated 9 months ago
- D/Invoke port of UrbanBishop☆29Updated 4 years ago
- Loads .NET Assembly Via CLR Loader☆15Updated 5 years ago
- My experience using Windows API for offensive purposes☆17Updated 3 years ago