Antivirus evasion project

Pillager是一个适用于后渗透期间的信息收集工具

Tool to evade Antivirus With Different Techniques

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Injecting shellcode into a process memory and executing it in C#

transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV

Load shellcode via syscall

MappingInjection via csharp

基于csharp实现的免杀shellcode加载器

D3vN3x-Crypter

JALSI - Just Another Lame Shellcode Injector

Inject shellcode into process via "EarlyBird"

Dynamic and extensible shell code generator with multiple output types which can be formatted in binary, hexadecimal, and the typical shellcode output standard.

.NET Reverse Shell

Process hollowing C# shellcode runner that is FUD against Microsoft Defender as of October 7, 2023.

This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. Process of encrypting shellcode is very important for injection processes to bypass signature based detection by the security controls.

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

Windows Service with the implementation of the Process hollowing technique to run shellcode

RArAtikTdkA is a modern, c#-based malware with great undetectable techniques

A Simple ShellcodeLoader