Alternatives and similar repositories for AmsiBypass-OpenSession:

Users that are interested in AmsiBypass-OpenSession are comparing it to the libraries listed below

• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆106Updated last year
• rasta-mouse / SCMUACBypass
  ☆95Updated last year
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆78Updated last year
• n00py / DCSync
  DCSync Attack from Outside using Impacket
  ☆112Updated 2 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆45Updated 2 years ago
• decoder-it / ADCSCoercePotato
  ☆220Updated 9 months ago
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆44Updated 2 years ago
• weaselsec / GodPotato-Aggressor-Script
  ☆85Updated last year
• smokeintheshell / CVE-2023-20198
  CVE-2023-20198 Exploit PoC
  ☆41Updated last year
• MzHmO / psexec_noinstall
  Repository contains psexec, which will help to exploit the forgotten pipe
  ☆166Updated 3 months ago
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆97Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆81Updated 2 years ago
• ananth-she11z / AutoSQL
  A tool to enumerate and exploit SQL Servers in AD
  ☆34Updated last year
• p0dalirius / MSSQL-Analysis-Coerce
  A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.
  ☆125Updated last year
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆76Updated last year
• kymb0 / Stealth_shellcode_runners
  ☆55Updated 10 months ago
• ice-wzl / wmiexec2
  wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures …
  ☆33Updated 8 months ago
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF
  ☆150Updated last year
• ScriptIdiot / BOF-patchit
  An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…
  ☆126Updated 2 years ago
• Haunted-Banshee / ErebusGate
  ErebusGate for Nim Bypass AV/EDR
  ☆161Updated 2 years ago
• Octoberfest7 / CVE-2023-36874_BOF
  Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
  ☆204Updated last year
• ShutdownRepo / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆68Updated 5 months ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆114Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆97Updated 2 years ago
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆80Updated last year
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆149Updated last year
• xenoscr / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆107Updated last year
• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆41Updated 9 months ago
• mertdas / SharpLateral
  Lateral Movement
  ☆122Updated last year
• kh4sh3i / ProxyShell
  CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability
  ☆36Updated 2 years ago