amsi

Star

Here are 41 public repositories matching this topic...

Language:All

Filter by language

All41 PowerShell10 C++8 C6 C#6 Python2 Go1 JavaScript1 PHP1 Rust1 VBA1

Sort:Most stars

Sort options

Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

tokyoneon /Chimera

Star1.5k

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

shell attack reverse-shell penetration-testing antivirus shell-scripts information-security kali-linux payload offensive-security payloads kali bypass-antivirus antivirus-evasion payload-generator kali-scripts amsi kali-script

UpdatedNov 9, 2021
PowerShell

mgeeky /Stracciatella

Sponsor

Star516

OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup

unmanaged powershell bypass opsec redteam amsi sharppick

UpdatedSep 18, 2022
C#

alphaSeclab /windows-security

Star488

Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.

dll powershell uac pe applocker windows-defender amsi windows-security sysinternal

UpdatedFeb 20, 2020

cfalta /PowerShellArmoury

Star471

A PowerShell armoury for security guys and girls

windows encryption powershell security-tools amsi redteam-tools avbypass

UpdatedJan 23, 2024
PowerShell

dobin /avred

Star454

Analyse your malware to surgically obfuscate it

obfuscation malware antivirus malware-development antivirus-evasion amsi

UpdatedFeb 26, 2025
Python

sinfulz /JustEvadeBro

Star307

JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.

anti-virus malware antivirus av evasion bypass amsi amsi-bypass evasions bypasses amsi-evasion

UpdatedAug 21, 2024

tokyoneon /CredPhish

Star290

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

shell dns backdoor reverse-shell penetration-testing dns-server information-security kali-linux offensive-security exfiltration kali bypass-antivirus antivirus-evasion c2 social-engineering kali-scripts amsi

UpdatedJul 27, 2021
PowerShell

GetRektBoy724 /MeterPwrShell

Star225

Automated Tool That Generates The Perfect Meterpreter Powershell Payload

windows malware bypass metasploit-framework payload bypass-antivirus meterpreter one-liner fud metasploit av-evasion bypass-uac bypass-firewall stager amsi bypass-amsi

UpdatedSep 24, 2021

GetRektBoy724 /BetterXencrypt

Star212

A better version of Xencrypt.Xencrypt it self is a Powershell runtime crypter designed to evade AVs.

windows powershell avs payload bypass-antivirus crypter fud av-evasion amsi

UpdatedJun 13, 2021
PowerShell

atxsinn3r /amsiscanner

Star178

A C/C++ implementation of Microsoft's Antimalware Scan Interface

windows cpp malware defender metasploit rapid7 amsi amsiscanbuffer amsiinitialize amsiscanstring amsiresultismalware

UpdatedMar 30, 2018
C++

mez-0 /InMemoryNET

Star137

Exploring in-memory execution of .NET

cpp assembly clr winhttp net cobalt-strike red-team amsi execute-assembly unmanaged-code

UpdatedApr 20, 2022
C++

ScriptIdiot /BOF-patchit

Star129

An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are available.

etw syscall cobalt-strike cna bof amsi

UpdatedOct 1, 2022
C

safebuffer /LightMe

Star93

HTTP Server serving obfuscated Powershell Scripts/Payloads

penetration-testing amsi redteam-infrastructure amsi-evasion

UpdatedJul 3, 2021
PowerShell

machine1337 /window-rat

Star92

The purpose of this tool is to test the window10 defender protection and also other antivirus protection.

protection powershell hacking antivirus payload payloads bypass-antivirus redteaming amsi avbypass window10 machine1337 avevasion

UpdatedAug 4, 2023
Python

EvilBytecode /Lifetime-Amsi-EtwPatch

Star83

Two in one, patch lifetime powershell console, no more etw and amsi!

pentesting etw fud red-teaming amsi amsi-bypass amsi-evasion etw-evasion amsi-patch etw-bypass

UpdatedJun 27, 2024
Go

ScriptIdiot /sleepmask_PatchlessHook

Star82

Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW

etw amsi cobaltstrike sleepmask hwbp

UpdatedMar 19, 2023
C

Hagrid29 /RemotePatcher

Star81

Patch AMSI and ETW in remote process via direct syscall

etw patch syscall amsi

UpdatedApr 28, 2022
C

hfiref0x /Misc

Star78

Miscellaneous Code and Docs

c dse miscellaneous atl reactos amsi apisetschema dsefix

UpdatedDec 11, 2023
C

NewOrbit /MalwareScan.AMSI

Star75

package amsi virus-scanner

UpdatedJul 30, 2024
C#

Tomiwa-Ot /py-amsi

Sponsor

Star30

Scan strings or files for malware using the Windows Antimalware Scan Interface

python python3 amsi pypi-package python-amsi amsi-wrapper

UpdatedMar 24, 2023
C++

Improve this page

Add a description, image, and links to theamsi topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with theamsi topic, visit your repo's landing page and select "manage topics."

Learn more

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly