Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: amsi-evasion

Chainski/Lifetime-Amsi-EtwPatch

Loads a C# binary in memory within powershell profile, patching AMSI + ETW.

Language: Nim - Size: 32.2 KB - Last synced at: 1 day ago - Pushed at: 2 days ago - Stars: 4 - Forks: 2

noderaven/solid-macro

VB macro for Word exploit

Language: VBA - Size: 7.81 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

Chainski/Chainski-Crypter Fork of NYAN-x-CAT/Lime-Crypter

Lime Crypter Obfuscator Mod

Language: C# - Size: 5.09 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 29 - Forks: 7

klezVirus/chameleon

PowerShell Script Obfuscator

Language: Python - Size: 99.6 KB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 549 - Forks: 94

klezVirus/inceptor

Template-Driven AV/EDR Evasion Framework

Language: Assembly - Size: 19.9 MB - Last synced at: 2 months ago - Pushed at: over 1 year ago - Stars: 1,681 - Forks: 269

EvilBytecode/Lifetime-Amsi-EtwPatch

Two in one, patch lifetime powershell console, no more etw and amsi!

Language: Go - Size: 10.7 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 88 - Forks: 18

safebuffer/LightMe

HTTP Server serving obfuscated Powershell Scripts/Payloads

Language: PowerShell - Size: 352 KB - Last synced at: 12 days ago - Pushed at: about 4 years ago - Stars: 94 - Forks: 17

V-i-x-x/AMSI-BYPASS

"AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS

Language: PowerShell - Size: 3.06 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 270 - Forks: 47

Chainski/Powershell-Cradles

Repo containing PowerShell Download Cradles (oneliners)

Language: PowerShell - Size: 20.5 KB - Last synced at: 3 months ago - Pushed at: over 2 years ago - Stars: 3 - Forks: 3

D1se0/AMSI-Bypass-Generator

Generator of techniques to evade AMSI in Windows. It uses random methods to generate code without signatures detectable by Windows Defender. Ideal for security research and AMSI bypass.

Language: JavaScript - Size: 1.24 MB - Last synced at: 3 months ago - Pushed at: 5 months ago - Stars: 2 - Forks: 0

Vith0r/Patch-Amsi

Ignorando amsi.dll via patch na memória

Language: C++ - Size: 7.81 KB - Last synced at: 8 months ago - Pushed at: 9 months ago - Stars: 0 - Forks: 0

ZeroMemoryEx/Amsi-Killer

Lifetime AMSI bypass

Language: C++ - Size: 34.2 KB - Last synced at: 8 months ago - Pushed at: almost 2 years ago - Stars: 591 - Forks: 89

h0ru/AMSI-Reaper

Language: C# - Size: 34.2 KB - Last synced at: 10 months ago - Pushed at: 10 months ago - Stars: 101 - Forks: 16

sinfulz/JustEvadeBro

JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.

Size: 734 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 290 - Forks: 24

Print3M/amsi-memory-patching

AMSI Bypass by Memory Patching

Language: PowerShell - Size: 1000 Bytes - Last synced at: 4 months ago - Pushed at: about 1 year ago - Stars: 2 - Forks: 1

bobby-tablez/Invoke-XORfuscation

Generate obfuscated PowerShell commands using XOR logic with random keys!

Language: PowerShell - Size: 1.38 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 2 - Forks: 0

gael-ba-semifir/Snake_Eye

Snake_Eye is a reflexion on AV evasion with evil python

Language: Python - Size: 344 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0

PrjX6005755883/Project49498

PowerShell Script Obfuscator

Size: 5.23 MB - Last synced at: about 2 years ago - Pushed at: about 2 years ago - Stars: 1 - Forks: 0

TartarusLabs/Expeditus

Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.

Language: C# - Size: 23.4 KB - Last synced at: over 2 years ago - Pushed at: about 3 years ago - Stars: 9 - Forks: 2

0xjbb/Amsi-Patch

AMSI ScanBuffer Patch with API Hook poc

Language: C++ - Size: 2.93 KB - Last synced at: about 2 years ago - Pushed at: over 3 years ago - Stars: 5 - Forks: 2

Related Keywords
amsi-evasion 20 amsi-bypass 19 amsi-patch 8 powershell 7 amsi 6 red-teaming 6 red-team 5 obfuscation 4 fud 3 bypass-antivirus 3 ethical-hacking 2 csharp 2 process-injection 2 pentesting 2 penetration-testing 2 av-evasion 2 edr-bypass 2 hacking 2 shellcode-injection 2 av 2 etw 2 avbypass 2 malware 2 shellcode-loader 2 microsoft 2 code-injection 2 etw-bypass 2 etw-evasion 2 offensive-security 2 page 1 page-generator 1 generator 1 evasion-techniques 1 code-generator 1 cibersecurity 1 powershell-droppers 1 powershell-cradles 1 payload 1 oneliners 1 redteaming 1 redteam 1 cpp 1 api-hooking 1 security 1 dropper 1 adversary-emulation 1 security-tools 1 python 1 xor 1 malware-research 1 antivirus-evasion 1 antivirus-bypass 1 evasions 1 evasion 1 bypasses 1 bypass 1 antivirus 1 anti-virus 1 windows 1 win32 1 page-hacker 1 injector 1 fud-crypter 1 evasive 1 defender-bypass 1 crypter-fud 1 crypter 1 chainski-crypter 1 vba-word 1 vba 1 shellcode 1 poc 1 offsec 1 microsoft-office 1 exploit 1 pentesting-tools 1 offensivenim 1 nim 1 oneliner-commands 1 amsiscanbuffer 1 vulnerability 1 pentest 1 0day 1 redteam-infrastructure 1 pinvoke 1 pe-packer 1 payload-generator 1 dinvoke 1 av-edr-bypass 1 av-bypass 1 runpe 1 process-hollowing 1 obfuscator 1 lime-crypter-mod 1 invoke 1