Search the Community
Showing results for tags 'amsi'.
-
Cobalt Strike BOF – Inject AMSI Bypass Cobalt Strike Beacon Object File (BOF) that bypasses AMSI in a remote process with code injection. [hide][Hidden Content]]
-
- 3
-
- injectamsibypass:
- cobalt
- (and 5 more)
-
Features TCP connection with certificate verification, stable and security Server IP port can be archived through link Multi-Server,multi-port support Plugin system through Dll, which has strong expansibility Super tiny client size (about 40~50K) Data transform with msgpack (better than JSON and other formats) Logging system recording all events Functions Remote shell Remote desktop Remote camera Registry Editor File management Process management Netstat Remote recording Process notification Send file Inject file Download and Execute Send notification Chat Open website Modify wallpaper Keylogger File lookup DDOS Ransomware Disable Windows Defender Disable UAC Password recovery Open CD Lock screen Client shutdown/restart/upgrade/uninstall System shutdown/restart/logout Bypass Uac Get computer information Thumbnails Auto task Mutex Process protection Block client Install with schtasks etc Support The following systems (32 and 64 bit) are supported Windows XP SP3 Windows Server 2003 Windows Vista Windows Server 2008 Windows 7 Windows Server 2012 Windows 8/8.1 Windows 10 [Hidden Content] Stub Scan [Hidden Content]
-
Salsa Tools is a collection of three different tools that combined, allows you to get a reverse shell on steroids in any Windows environment without even needing PowerShell for it's execution. In order to avoid the latest detection techniques (AMSI), most of the components were initially written on C#. Salsa Tools was publicly released by Luis Vacas during his Talk “Inmersión en la explotación tiene rima” which took place during h-c0n in 9th February 2019. [HIDE][Hidden Content]]