t3l3machus / PowerShell-Obfuscation-Bible
A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.
☆969Updated 7 months ago
Alternatives and similar repositories for PowerShell-Obfuscation-Bible:
Users that are interested in PowerShell-Obfuscation-Bible are comparing it to the libraries listed below
- A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec☆945Updated this week
- Windows Local Privilege Escalation Cookbook☆1,069Updated last month
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆687Updated 10 months ago
- This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.☆552Updated 4 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆401Updated last week
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆510Updated 7 months ago
- Killer is a simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆784Updated 8 months ago
- Dumping DPAPI credz remotely☆1,091Updated 2 weeks ago
- Simple & Powerful PowerShell Script Obfuscator☆555Updated last year
- This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation inc…☆496Updated last month
- ☆698Updated 11 months ago
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆1,928Updated last week
- During the exploitation phase of a pen test or ethical hacking engagement, you will ultimately need to try to cause code to run on target…☆707Updated last month
- PowerShell Ransomware Simulator with C2 Server☆474Updated last year
- Powershell tool to automate Active Directory enumeration.☆1,071Updated 3 weeks ago
- sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment☆573Updated 3 weeks ago
- An List of my own Powershell scripts, commands and Blogs for windows Red Teaming.☆399Updated 2 weeks ago
- Script for generating revshells☆464Updated 6 months ago
- A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)☆1,087Updated 9 months ago
- A RedTeam Toolkit☆394Updated 4 months ago
- AV/EDR Evasion Lab for Training & Learning Purposes☆1,204Updated 3 weeks ago
- Awesome EDR Bypass Resources For Ethical Hacking☆1,108Updated last month
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆1,914Updated last week
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆651Updated last year
- Red Team Cheatsheet in constant expansion.☆1,165Updated last year
- Automated Active Directory Enumeration☆436Updated this week
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆528Updated 4 months ago
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,615Updated 4 months ago
- A Python3 based C2 server to make life of red teamer a bit easier. The payload is capable to bypass all the known antiviruses and endpoi…☆520Updated last year
- TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts☆1,109Updated 9 months ago