Here are
17 public repositories
matching this topic...
Template-Driven AV/EDR Evasion Framework
Updated
Nov 3, 2023
Assembly
PowerShell Script Obfuscator
Updated
Nov 2, 2023
Python
JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
"AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
Updated
Oct 28, 2024
PowerShell
HTTP Server serving obfuscated Powershell Scripts/Payloads
Updated
Jul 3, 2021
PowerShell
Two in one, patch lifetime powershell console, no more etw and amsi!
Lime Crypter Obfuscator Mod
Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.
This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerShell commands.
Updated
Jun 2, 2024
PowerShell
AMSI ScanBuffer Patch with API Hook poc
Generate obfuscated PowerShell commands using XOR logic with random keys!
Updated
Feb 8, 2024
PowerShell
Loads a C# binary in memory within powershell profile, patching AMSI + ETW.
AMSI Bypass by Memory Patching
Updated
May 5, 2024
PowerShell
Repo containing PowerShell Download Cradles (oneliners)
Updated
Dec 7, 2022
PowerShell
Patching AmsiOpenSession by forcing an error branching.
Improve this page
Add a description, image, and links to the
amsi-evasion
topic page so that developers can more easily learn about it.
Curate this topic
Add this topic to your repo
To associate your repository with the
amsi-evasion
topic, visit your repo's landing page and select "manage topics."
Learn more
You can’t perform that action at this time.
