Alternatives and similar repositories for AmsiPEBWalkVBA

Users that are interested in AmsiPEBWalkVBA are comparing it to the libraries listed below

• rmdavy / AmsiPEBWalkVBAx64
  ☆16Updated 5 years ago
• rvrsh3ll / FlaskRedirectorProtector
  Protect your servers with a secret header
  ☆29Updated 5 years ago
• py7hagoras / OfficeMacro64
  This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…
  ☆21Updated 5 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 7 years ago
• 0xC0D1F1ED / cpp_vs_payload_template
  Visual Studio (C++) Solution Template for Payloads
  ☆18Updated 5 years ago
• NotMedic / SocksLauncher
  ☆14Updated 5 years ago
• EspressoCake / Cobalt_Strike_Ansible
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Updated 3 years ago
• tevora-threat / rt_redirectors
  Ansible role to configure redirectors for red team C2
  ☆30Updated 6 years ago
• RedLectroid / OutlookSend
  A C# tool to send emails through Outlook from the command line or in memory
  ☆31Updated 5 years ago
• freshness79 / unlock
  Microsoft Applocker evasion tool
  ☆39Updated 5 years ago
• anthemtotheego / SharpNado
  ☆70Updated 6 years ago
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆47Updated 4 years ago
• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• two06 / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆15Updated 4 years ago
• mdsecactivebreach / RegistryStrikesBack
  ☆53Updated 4 years ago
• Apr4h / GetInjectedThreads
  C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
  ☆54Updated 4 years ago
• leonjza / tc2
  treafik fronted c2 examples
  ☆26Updated 4 years ago
• leoloobeek / keyserver
  Easily serve HTTP and DNS keys for proper payload protection
  ☆59Updated 6 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago
• airman604 / schtask_now
  ☆17Updated 6 years ago
• kyleavery / scarecrow_wrapper
  ☆37Updated 4 years ago
• shantanu561993 / Awesome_Firebase_DomainFront
  Firebase Domain Front Code
  ☆21Updated 4 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆32Updated 5 years ago
• rmdavy / WordAmsiBypass
  ☆38Updated 5 years ago
• rmdavy / VBAFunctionPointers
  ☆19Updated 4 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 5 years ago
• dmchell / Sniper
  A simple proof of concept for detecting use of Cobalt Strike's execute-assembly
  ☆61Updated 3 years ago
• rvrsh3ll / RuralBishop
  D/Invoke port of UrbanBishop
  ☆29Updated 4 years ago
• upils / redirect-lib
  Library of traffic redirectors
  ☆26Updated 5 years ago
• decoder-it / BadBackupOperator
  ☆37Updated 7 years ago