Alternatives and similar repositories for AmsiBypass-OpenSession

Users that are interested in AmsiBypass-OpenSession are comparing it to the libraries listed below

• rasta-mouse / SCMUACBypass
  ☆99Updated last year
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆87Updated 2 years ago
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆111Updated 2 years ago
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆44Updated 3 years ago
• weaselsec / GodPotato-Aggressor-Script
  ☆88Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆83Updated 3 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆50Updated 2 years ago
• mertdas / SharpLateral
  Lateral Movement
  ☆125Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆99Updated 2 years ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆77Updated 2 years ago
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆98Updated last year
• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆46Updated last year
• ScriptIdiot / BOF-patchit
  An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…
  ☆135Updated 2 years ago
• n00py / DCSync
  DCSync Attack from Outside using Impacket
  ☆115Updated 3 years ago
• decoder-it / ADCSCoercePotato
  ☆226Updated last year
• F4l13n5n0w / sn0wldr
  This project is an AES loader for c2 shellcode
  ☆26Updated last year
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆45Updated 2 years ago
• roberreigada / LsassUnhooker
  Little program written in C# to bypass EDR hooks and dump the content of the lsass process
  ☆61Updated 3 years ago
• kymb0 / Stealth_shellcode_runners
  ☆56Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆117Updated last year
• MinoTauro2020 / RedTeam-CRTL-Certification
  ☆16Updated 5 months ago
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆87Updated 2 months ago
• e1abrador / Crackmapexec-custom-modules
  Crackmapexec custom scripts used in my internal pentests.
  ☆24Updated last year
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆37Updated 11 months ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• praetorian-inc / ADFSRelay
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆184Updated 2 years ago
• Octoberfest7 / CVE-2023-36874_BOF
  Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
  ☆206Updated last year
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆82Updated last year
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆94Updated last year
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆156Updated last year