surya-dev-singh / AmsiBypass-OpenSessionLinks
This code bypass AMSI by setting JE instruction to JNE in assembly of amsi.dll file
☆36Updated 2 years ago
Alternatives and similar repositories for AmsiBypass-OpenSession
Users that are interested in AmsiBypass-OpenSession are comparing it to the libraries listed below
Sorting:
- ☆99Updated last year
- ☆88Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆44Updated 3 years ago
- ☆226Updated last year
- ☆52Updated 2 years ago
- DCSync Attack from Outside using Impacket☆115Updated 3 years ago
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆78Updated 2 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆84Updated 3 years ago
- ☆88Updated last year
- An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…☆135Updated 2 years ago
- Winsocket for Cobalt Strike.☆98Updated last year
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆131Updated last year
- To audit the security of read-only domain controllers☆117Updated last year
- Terminate AV/EDR leveraging BYOVD attack☆87Updated 3 months ago
- This project is an AES loader for c2 shellcode☆29Updated last year
- Lateral Movement☆124Updated last year
- ☆56Updated last year
- .bin file to shellcode convertor☆38Updated 11 months ago
- Library of BOFs to interact with SQL servers☆182Updated 2 months ago
- Dump Windows SAM hashes☆42Updated last year
- ☆17Updated 6 months ago
- Duplicate not owned Token from Running Process☆72Updated last year
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated last year
- MSSQL Database Attacker tool☆189Updated 2 years ago
- Github as C2 Demonstration , free API = free C2 Infrastructure☆140Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆137Updated last year
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆157Updated last year
- ☆158Updated 2 years ago
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆54Updated last year