amsi-evasion · GitHub Topics

Template-Driven AV/EDR Evasion Framework

obfuscation pinvoke dinvoke code-injection process-injection av-bypass amsi-bypass av-evasion edr-bypass pe-packer amsi-evasion red-team red-teaming av-edr-bypass payload-generator

Assembly 1.69 k

2 年前

ZeroMemoryEx / Amsi-Killer

Lifetime AMSI bypass

amsi-bypass amsi-patch red-team win32 amsi-evasion red-teaming

C++ 627

2 年前

klezVirus / chameleon

PowerShell Script Obfuscator

PowerShell obfuscation bypass-antivirus amsi-evasion amsi-bypass

Python 553

2 年前

sinfulz / JustEvadeBro

JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.

av antivirus anti-virus Malware evasion amsi-evasion amsi-bypass bypass evasions

308

10 个月前

V-i-x-x / AMSI-WRITE-RAID-BYPASS

"AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS

0day amsi-bypass amsi-evasion amsi-patch av avbypass edr-bypass vulnerability pentest pentesting Malware

PowerShell 284

2 个月前

h0ru / AMSI-Reaper

amsi-bypass amsi-evasion red-team C#PowerShell Windows amsi-patch

C# 103

9 个月前

safebuffer / LightMe

HTTP Server serving obfuscated Powershell Scripts/Payloads

amsi-evasion redteam-infrastructure penetration-testing

PowerShell 94

4 年前

EvilBytecode / Lifetime-Amsi-EtwPatch

Two in one, patch lifetime powershell console, no more etw and amsi!

amsi-bypass amsi-evasion amsi-patch etw etw-bypass pentesting red-teaming fud

Go 92

2 个月前

TartarusLabs / Expeditus

Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.

adversary-emulation amsi-bypass amsi-evasion code-injection dropper penetration-testing process-injection red-team red-teaming 安全 shellcode-injection shellcode-loader

C# 11

3 年前

Vith0r / Patch-Amsi

Bypassing amsi.dll via memory patch, simple code!

amsi-bypass amsi-evasion amsi-patch

C++ 11

8 个月前

okankurtuluss / AMSIBypassPatch

This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerShell commands.

amsi-bypass amsi-evasion amsi-patch bypass cyber cyber-security evasion patch pentest PowerShell powershell-scripts red-team 安全

PowerShell 11

1 年前

0xjbb / Amsi-Patch

AMSI ScanBuffer Patch with API Hook poc

amsi-bypass amsi-evasion C++ethical-hacking Hacking redteam redteaming api-hooking

C++ 6

3 年前

bobby-tablez / Invoke-XORfuscation

Generate obfuscated PowerShell commands using XOR logic with random keys!

malware-research obfuscation PowerShell amsi-bypass amsi-evasion antivirus-bypass antivirus-evasion avbypass

PowerShell 5

2 个月前

Chainski / Lifetime-Amsi-EtwPatch

Loads a C# binary in memory within powershell profile, patching AMSI + ETW.

amsi-bypass amsi-evasion amsi-patch etw etw-bypass fud Nim pentesting-tools PowerShell red-teaming offensive-security

Nim 4

1 年前

Chainski / Powershell-Cradles

Repo containing PowerShell Download Cradles (oneliners)

amsi-bypass amsi-evasion PowerShell amsi-patch shellcode-loader oneliner-commands payload

PowerShell 3

3 年前

Print3M / amsi-memory-patching

AMSI Bypass by Memory Patching

amsi-bypass amsi-evasion amsi-patch

PowerShell 2

1 年前

Gurpreet06 / AMSI_Patcher

Patching AmsiOpenSession by forcing an error branching.

amsi-bypass amsi-evasion amsi-patch offensive-security C++hacking-tool

C++ 2

2 年前

D1se0 / AMSI-Bypass-Generator

Generator of techniques to evade AMSI in Windows. It uses random methods to generate code without signatures detectable by Windows Defender. Ideal for security research and AMSI bypass.

amsi-bypass amsi-evasion code-generator ethical-hacking Generator Hacking page page-generator PowerShell

JavaScript 2

4 个月前

noderaven / solid-macro

VB macro for Word exploit

amsi-bypass amsi-evasion Exploit Microsoft microsoft-office offensive-security offsec poc red-team red-teaming Shell shellcode-injection VBA

VBA 0

5 个月前