rmdavy / AMSI_Ordinal_BypassLinks
Bypass AMSI and Defender using Ordinal Values
☆42Updated 5 years ago
Alternatives and similar repositories for AMSI_Ordinal_Bypass
Users that are interested in AMSI_Ordinal_Bypass are comparing it to the libraries listed below
Sorting:
- Extracts all base64 ticket data from a rubeus /dump file and converts the tickets to ccache files for easy use with other tools.☆67Updated 5 years ago
- Credential Dumper☆78Updated 5 years ago
- Port of Invoke-Excel4DCOM☆104Updated 5 years ago
- Initial Commit of Coresploit☆57Updated 3 years ago
- My musings with C#☆28Updated 2 years ago
- External C2 Using IE COM Objects☆101Updated 6 years ago
- Aggressor Script to Execute Assemblies from Github☆71Updated 4 years ago
- ☆72Updated 3 years ago
- .Net Assembly to block ETW telemetry in current process☆80Updated 5 years ago
- A script that can be deployed to Azure App for C2 / Proxy / Redirector☆40Updated 6 years ago
- ☆48Updated 4 years ago
- Helper script for mangling CS payloads☆51Updated 6 years ago
- A repo to hold any bypasses I work on/study/whatever☆19Updated 4 years ago
- Suite of Shellcode Running Utilities☆113Updated 5 years ago
- ☆54Updated 6 years ago
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069☆37Updated 6 years ago
- Standalone version of my AES Powershell payload for Cobalt Strike.☆111Updated 5 years ago
- Cobalt Strike cna script for randomized argument spoofing☆51Updated 6 years ago
- ☆37Updated 6 years ago
- Quick and dirty .net console app for querying mssql servers.☆20Updated 7 years ago
- Send message on Telegram when you get a new Cobalt Strike beacon☆21Updated 5 years ago
- F# Implementation to spawn shellcode☆47Updated 7 years ago
- I used this to see if an EDR is running in Safe Mode☆36Updated 4 years ago
- SharpBuster is a C# implementation of a directory brute forcing tool. It's designed to be used via Cobalt Strike's execute-assembly and s…☆62Updated 5 years ago
- ☆35Updated 7 years ago
- C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread☆119Updated 6 years ago
- adding a backdooruser using win32api☆80Updated 5 years ago
- C# .NET Assembly for interacting with File Object DACLs☆44Updated 5 years ago
- .NET 4.0 Scheduled Job Lateral Movement☆90Updated 5 years ago
- Smart overlay for Cobalt Strike PS function☆31Updated 6 years ago