t3l3machus / PowerShell-Obfuscation-Bible
A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.
☆931Updated 6 months ago
Alternatives and similar repositories for PowerShell-Obfuscation-Bible:
Users that are interested in PowerShell-Obfuscation-Bible are comparing it to the libraries listed below
- A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec☆920Updated 4 months ago
- Windows Local Privilege Escalation Cookbook☆1,034Updated last week
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆651Updated 8 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆380Updated 3 months ago
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆501Updated 5 months ago
- Dumping DPAPI credz remotely☆1,054Updated 2 months ago
- This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.☆544Updated 3 months ago
- Powershell tool to automate Active Directory enumeration.☆1,037Updated last month
- Killer is a simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆778Updated 6 months ago
- PowerShell Ransomware Simulator with C2 Server☆476Updated last year
- This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation inc…☆474Updated 3 weeks ago
- AV/EDR Evasion Lab for Training & Learning Purposes☆1,087Updated last week
- C# Data Collector for BloodHound☆814Updated 2 weeks ago
- Simple & Powerful PowerShell Script Obfuscator☆541Updated last year
- Technical notes, AD pentest methodology, list of tools, scripts and Windows commands that I find useful during internal penetration tests…☆255Updated 3 weeks ago
- LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113☆460Updated 3 weeks ago
- An List of my own Powershell scripts, commands and Blogs for windows Red Teaming.☆388Updated 3 months ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆646Updated last year
- ☆686Updated 10 months ago
- Automated Active Directory Enumeration☆433Updated last week
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆939Updated last year
- Script for generating revshells☆460Updated 4 months ago
- Send phishing messages and attachments to Microsoft Teams users☆1,049Updated 7 months ago
- ☆694Updated 2 weeks ago
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,575Updated 2 months ago
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆1,879Updated 2 weeks ago
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆1,863Updated last month
- ☆688Updated 3 weeks ago
- BloodyAD is an Active Directory Privilege Escalation Framework☆1,429Updated this week
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…��☆706Updated 11 months ago