plackyhacker / AMSI-Bypass
Another AMSI bypass - but in C++.
☆23Updated last year
Related projects ⓘ
Alternatives and complementary repositories for AMSI-Bypass
- A simple Nim stager (w/ fiber execution)☆14Updated 2 years ago
- API Hammering with C++20☆34Updated 2 years ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆32Updated last year
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 3 years ago
- Run python from a single exe☆34Updated 2 years ago
- Beacon Object File implementation of Yaxser's Backstab☆14Updated 2 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆30Updated 8 months ago
- DLL Exports Extraction BOF with optional NTFS transactions.☆78Updated 3 years ago
- An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.☆53Updated 2 years ago
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆27Updated 3 years ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- C# project to Reflectively load .Net assemblies in memory☆17Updated 4 months ago
- Small POC for process ghosting☆38Updated 2 years ago
- A simple injector that uses LoadLibraryA☆16Updated 4 years ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆17Updated last year
- ☆37Updated 3 years ago
- ShellcodeFluctuation PoC ported to Nim☆75Updated 2 years ago
- My implementation of Halo's Gate technique in C#☆53Updated 2 years ago
- Bunch of BOF files☆23Updated 8 months ago
- Just another casual shellcode native loader☆24Updated 2 years ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆30Updated last year
- ☆47Updated last year