Skip to content
/ nimLoader Public
forked from maninwire/nimLoader

load dumped csharp binaries as assemblies and launch them in memory

License

GPL-3.0 license
0 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

manantsoar/nimLoader

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
CsharpToNimByteArray.ps1
CsharpToNimByteArray.ps1
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
nimCrypter.nim
nimCrypter.nim
 
 
nimLoader.nim
nimLoader.nim
 
 

Repository files navigation

nimLoader

Load dumped Csharp binaries as assemblies and launch them in memory bypassing AMSI and ETW.

This tool is deeply inspired by @s3cur3th1ssh1t and @Byt3bl33d3r work on Nim, and the Invoke-Sharploader and netLoader tools.

Use

This tool is actually three:

CsharpToNimByteArray

This is a slight modification of the tool described at https://s3cur3th1ssh1t.github.io/Playing-with-OffensiveNim It dumps a Csharp tool's bytes to a txt file.

nimCrypter

a tool to encrypt/decript files

nimLoader

The main tool that loads dumped/encrypted files from file or url

Video demo

You can see a demo here: https://youtu.be/AkxCnHMjz7s

About

load dumped csharp binaries as assemblies and launch them in memory

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Nim 85.5%
  • PowerShell 14.5%