raskolnikov90 / LainAmsiOpenSessionView external linksLinks
Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dll
☆50Jun 16, 2025Updated 7 months ago
Alternatives and similar repositories for LainAmsiOpenSession
Users that are interested in LainAmsiOpenSession are comparing it to the libraries listed below
Sorting:
- A simple research-focused AES-based shellcode loader demonstrating in-memory execution and NTAPI techniques to help understand how custom…☆36Jan 13, 2026Updated last month
- Windows Privilege Escalation☆22Jun 7, 2022Updated 3 years ago
- Living off the land searches for explorer and sharepoint☆92Dec 7, 2025Updated 2 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆277Jan 12, 2026Updated last month
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- ☆13Apr 8, 2022Updated 3 years ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆54May 12, 2025Updated 9 months ago
- 🛠️ Explore custom C2 TTPs with Aether-C2-Framework, focusing on lightweight Rust implants and stealthy transport stacks to reduce forens…☆18Updated this week
- OSEP - Offsec Expert Professional☆19Jun 23, 2024Updated last year
- PEN-300 collection to help you on your exam.☆13Apr 19, 2022Updated 3 years ago
- Automation of Active Directory penetration testing tasks on top of BloodHound CE☆35Aug 21, 2023Updated 2 years ago
- ELF Beacon Object File (BOF) Template☆19Nov 18, 2024Updated last year
- Permanently disable EDRs as local admin☆125Dec 19, 2025Updated last month
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆230Oct 6, 2024Updated last year
- Windows Access token manipulation tool made in C#☆24Aug 24, 2025Updated 5 months ago
- Self delete DLL (2)☆14Feb 15, 2024Updated last year
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆55Jul 13, 2025Updated 7 months ago
- Umbrella will protect your shellcode from the rain.☆31Jun 4, 2025Updated 8 months ago
- ☆26Aug 11, 2025Updated 6 months ago
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 6 months ago
- What's the Red Team doing to my Linux Box? - BSides Vienna 2024☆17Nov 23, 2024Updated last year
- output burp body only and auto pretiffy☆20May 1, 2025Updated 9 months ago
- PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Iv…☆49Jan 16, 2025Updated last year
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Feb 10, 2025Updated last year
- A PoC for Early Cascade process injection technique.☆208Jan 30, 2025Updated last year
- ☆25Nov 24, 2025Updated 2 months ago
- Step-by-step documentation on how to decrypt SCCM database secrets offline☆50Oct 20, 2025Updated 3 months ago
- Cross Compatible Command and Control☆47Dec 18, 2025Updated last month
- Hybrid AD utilities for ROADtools☆106May 25, 2025Updated 8 months ago
- Persist like a Dodder☆67May 19, 2025Updated 8 months ago
- SVG Analysis and generation tools for commonly seen SVG attachment phishing☆52Sep 24, 2025Updated 4 months ago
- Cortex EDR Ransomware protection Bypass☆25Feb 8, 2025Updated last year
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Jan 20, 2025Updated last year
- Make everyone in your VLAN ASRep roastable☆247Oct 7, 2025Updated 4 months ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆162Jul 14, 2025Updated 7 months ago
- ☆27Dec 23, 2023Updated 2 years ago
- ☆30Jun 30, 2025Updated 7 months ago
- the most basic DLL ever to pop a cmd.☆24Jul 11, 2020Updated 5 years ago
- Using Chromium-based browsers as a proxy for C2 traffic.☆141Dec 6, 2025Updated 2 months ago