trustedsec / SysWhispers
AV/EDR evasion via direct system calls.
☆32Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for SysWhispers
- Easily serve HTTP and DNS keys for proper payload protection☆60Updated 6 years ago
- ☆44Updated 4 years ago
- Suite of Shellcode Running Utilities☆106Updated 4 years ago
- Automation Engine using the Covenant API and lua scripting☆24Updated last year
- A more obfuscated CactusTorch targeted towards office☆31Updated 3 years ago
- Proper Payload Protection Prevents Poor Performance☆73Updated 2 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆87Updated 5 years ago
- Cobalt Strike Aggressor script menu for Powerview/SharpView☆28Updated 5 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆41Updated 6 years ago
- ☆37Updated 6 years ago
- pypykatz plugin for volatility3 framework☆31Updated 7 months ago
- Credential Dumper☆74Updated 4 years ago
- D/Invoke port of UrbanBishop☆104Updated 4 years ago
- ☆89Updated 2 years ago
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆68Updated 4 years ago
- A Control Panel Applet dropper project. It has a high success rate on engagements since nobody cares about .CPL files and you can just do…☆41Updated 6 years ago
- ☆45Updated 3 years ago
- Simple .NET assembly to interact with services.☆38Updated 5 years ago
- Initial Commit of Coresploit☆55Updated 3 years ago
- Iterative AD discovery toolkit for offensive operations☆86Updated 4 years ago
- The Diagon Attack Framework is a Prismatica application containing the Ravenclaw, Gryffindor, and Slytherin remote access tools (RATs).☆50Updated last year
- An async Python client library for Empire's RESTful API☆25Updated 11 months ago
- InsecurePowerShell is PowerShell with some security features removed.☆101Updated 6 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆25Updated 4 years ago
- This repo is dedicated to a powerpoint exploit☆33Updated 3 years ago
- A Catalog of Application Whitelisting Bypass Techniques☆11Updated 7 years ago
- Registry permission scanner written in C# for finding potential privesc avenues within registry☆84Updated 3 years ago
- A C# stager for SILENTTRINITY (https://github.com/byt3bl33d3r/SILENTTRINITY)☆63Updated 4 years ago