Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dll
☆52Jun 16, 2025Updated 9 months ago
Alternatives and similar repositories for LainAmsiOpenSession
Users that are interested in LainAmsiOpenSession are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- Living off the land searches for explorer and sharepoint☆93Dec 7, 2025Updated 3 months ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆55May 12, 2025Updated 10 months ago
- Windows Privilege Escalation☆23Jun 7, 2022Updated 3 years ago
- PEN-300 collection to help you on your exam.☆13Apr 19, 2022Updated 3 years ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- A simple research-focused AES-based shellcode loader demonstrating in-memory execution and NTAPI techniques to help understand how custom…☆39Feb 19, 2026Updated last month
- Automation of Active Directory penetration testing tasks on top of BloodHound CE☆35Aug 21, 2023Updated 2 years ago
- Permanently disable EDRs as local admin☆128Dec 19, 2025Updated 3 months ago
- ☆13Apr 8, 2022Updated 3 years ago
- Weaponize signed .NET ClickOnce applications for initial access by hijacking a dependency DLL via AppDomainManager injection and loading …☆147Feb 14, 2026Updated last month
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆289Jan 12, 2026Updated 2 months ago
- ELF Beacon Object File (BOF) Template☆19Nov 18, 2024Updated last year
- Persist like a Dodder☆68May 19, 2025Updated 10 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Iv…☆50Jan 16, 2025Updated last year
- Self delete DLL (2)☆14Feb 15, 2024Updated 2 years ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆230Oct 6, 2024Updated last year
- Umbrella will protect your shellcode from the rain.☆31Jun 4, 2025Updated 9 months ago
- OSEP - Offsec Expert Professional☆21Jun 23, 2024Updated last year
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 8 months ago
- Microsoft Vulnerable Driver Block Lists in CSV and JSON for SIEM lookups☆54Sep 19, 2025Updated 6 months ago
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆56Jul 13, 2025Updated 8 months ago
- Cross Compatible Command and Control☆47Dec 18, 2025Updated 3 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Windows Access token manipulation tool made in C#☆24Aug 24, 2025Updated 7 months ago
- What's the Red Team doing to my Linux Box? - BSides Vienna 2024☆17Nov 23, 2024Updated last year
- Convert Microsoft Defender Antivirus Signatures (VDM) into a SQL DB☆24Jun 27, 2025Updated 8 months ago
- ☆62Feb 12, 2026Updated last month
- Plantronics Desktop Hub LPE☆37May 15, 2024Updated last year
- Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies☆50Jul 6, 2025Updated 8 months ago
- output burp body only and auto pretiffy☆20May 1, 2025Updated 10 months ago
- A PoC for Early Cascade process injection technique.☆215Jan 30, 2025Updated last year
- This project is an AES loader for c2 shellcode☆36Jan 24, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆41Dec 7, 2025Updated 3 months ago
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Feb 10, 2025Updated last year
- Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…☆18Aug 13, 2025Updated 7 months ago
- ☆26Aug 11, 2025Updated 7 months ago
- ☆15Mar 21, 2025Updated last year
- Windows Defender VDM lua collections☆48Oct 30, 2022Updated 3 years ago
- HEVD Exploits for fun and learning.☆15Aug 30, 2025Updated 6 months ago