574 Open source projects that are alternatives of or similar to HellgateLoader_CSharp

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

ShellCodeLoader via DInvoke

Python AV Evasion Tools

A list of payload and bypass lists for penetration testing and red team infrastructure build.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Script collection to bypass Network Access Control (NAC, 802.1x)

Search for Unix binaries that can be exploited to bypass system security restrictions.

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Webshell Manager

python写的一款免杀工具（shellcode加载器）BypassAV，国内杀软全过（windows denfend）2021-9-13

OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Overlord - Red Teaming Infrastructure Automation

Offensive Reverse Shell (Cheat Sheet)

Golang Bypass Av Generator template

Scan for and exploit Consul agents

The goal of this repository is to document the most common techniques to bypass AppLocker.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.

cobaltstrike ms17-010 module and some other

Hershell is a simple TCP reverse shell written in Go.

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

Collection of quality safety articles. Awesome articles.

Passwords Recovery Tool

Penetration tests guide based on OWASP including test cases, resources and examples.

A poorman's proxycannon and botnet, using docker, ovpn files, and a dante socks5 proxy

🌒 Shell command obfuscation to avoid detection systems

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2

Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

Pentest/BugBounty progress control with scanning modules

SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#

C# tool to discover low hanging fruits

useful pentest note

Custom security distro for remote penetration testing

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

nuclei framework scripts

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Cheat-Sheet of tools for penetration testing

Fast website scraper and wordlist generator

Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.

Raw syscall implementations with Powershell

Intentionally vulnerable Android application.

Spoof TLS/JA3 fingerprints in GO and Javascript

ISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique. Also, launchers are totally anti-copy and naturally broken when got submitted.

The purpose of this tool is to test the window10 defender protection and also other antivirus protection.

stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device objects.

Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/

BloodHound Docker Ready to Use

JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.

Just another useless C2 occupying space in some HDD somewhere.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.