Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dll
☆50Jun 16, 2025Updated 8 months ago
Alternatives and similar repositories for LainAmsiOpenSession
Users that are interested in LainAmsiOpenSession are comparing it to the libraries listed below
Sorting:
- A simple research-focused AES-based shellcode loader demonstrating in-memory execution and NTAPI techniques to help understand how custom…☆38Feb 19, 2026Updated 2 weeks ago
- Windows Privilege Escalation☆23Jun 7, 2022Updated 3 years ago
- Living off the land searches for explorer and sharepoint☆93Dec 7, 2025Updated 3 months ago
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆286Jan 12, 2026Updated last month
- ☆13Apr 8, 2022Updated 3 years ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆54May 12, 2025Updated 9 months ago
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- PEN-300 collection to help you on your exam.☆13Apr 19, 2022Updated 3 years ago
- Weaponize signed .NET ClickOnce applications for initial access by hijacking a dependency DLL via AppDomainManager injection and loading …☆135Feb 14, 2026Updated 2 weeks ago
- OSEP - Offsec Expert Professional☆21Jun 23, 2024Updated last year
- Automation of Active Directory penetration testing tasks on top of BloodHound CE☆35Aug 21, 2023Updated 2 years ago
- ELF Beacon Object File (BOF) Template☆19Nov 18, 2024Updated last year
- Permanently disable EDRs as local admin☆127Dec 19, 2025Updated 2 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆230Oct 6, 2024Updated last year
- Windows Access token manipulation tool made in C#☆24Aug 24, 2025Updated 6 months ago
- Self delete DLL (2)☆14Feb 15, 2024Updated 2 years ago
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 7 months ago
- output burp body only and auto pretiffy☆20May 1, 2025Updated 10 months ago
- Umbrella will protect your shellcode from the rain.☆31Jun 4, 2025Updated 9 months ago
- What's the Red Team doing to my Linux Box? - BSides Vienna 2024☆17Nov 23, 2024Updated last year
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆56Jul 13, 2025Updated 7 months ago
- ☆26Aug 11, 2025Updated 6 months ago
- PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Iv…☆49Jan 16, 2025Updated last year
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Feb 10, 2025Updated last year
- A PoC for Early Cascade process injection technique.☆211Jan 30, 2025Updated last year
- ☆25Nov 24, 2025Updated 3 months ago
- ☆54Feb 12, 2026Updated 3 weeks ago
- Step-by-step documentation on how to decrypt SCCM database secrets offline☆50Oct 20, 2025Updated 4 months ago
- Cross Compatible Command and Control☆47Dec 18, 2025Updated 2 months ago
- Hybrid AD utilities for ROADtools☆108May 25, 2025Updated 9 months ago
- Persist like a Dodder☆68May 19, 2025Updated 9 months ago
- Cortex EDR Ransomware protection Bypass☆26Feb 8, 2025Updated last year
- SVG Analysis and generation tools for commonly seen SVG attachment phishing☆55Sep 24, 2025Updated 5 months ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Jan 20, 2025Updated last year
- Make everyone in your VLAN ASRep roastable☆248Oct 7, 2025Updated 4 months ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆160Jul 14, 2025Updated 7 months ago
- ☆30Jun 30, 2025Updated 8 months ago
- ☆26Dec 23, 2023Updated 2 years ago