ricardojoserf / SharpNado
Repository to gather the .NET malware I will be developing
☆11Updated last month
Related projects ⓘ
Alternatives and complementary repositories for SharpNado
- A C# Solution Source Obfuscator for avoiding AV signatures with minimal user interaction. Powered by the Roslyn C# library.☆69Updated 4 years ago
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆168Updated 8 months ago
- C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.☆101Updated last year
- UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.☆44Updated 6 months ago
- A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …☆160Updated last year
- ☆118Updated last year
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆54Updated 3 months ago
- ☆142Updated last year
- Encode shellcode into dictionary words for evasion and entropy reduction☆19Updated last week
- ☆108Updated last year
- Malware?☆70Updated last month
- Patch AMSI and ETW in remote process via direct syscall☆77Updated 2 years ago
- ☆88Updated 2 months ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆81Updated 4 months ago
- ☆81Updated 2 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆42Updated this week
- Terminate AV/EDR leveraging BYOVD attack☆77Updated last year
- PoC to self-delete a binary in C#☆25Updated 9 months ago
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆90Updated last year
- reflectively load and execute PEs locally and remotely bypassing EDR hooks☆148Updated 10 months ago
- Tool for playing with Windows Access Token manipulation.☆51Updated last year
- ☆116Updated 2 months ago
- ☆121Updated 11 months ago
- A collection of (even more) alternative shellcode callback methods in CSharp☆66Updated 2 weeks ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆134Updated 5 months ago
- Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.☆145Updated 9 months ago
- Playing with packets in C#☆14Updated 2 months ago
- ☆59Updated 5 months ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader☆84Updated 8 months ago
- Lateral Movement via the .NET Profiler☆74Updated 5 months ago