MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
Various notes I have compiled during the OSEP PEN-300 course.
Invoke-KleptoKitty - Deploys Payloads and collects credentials
A sophisticated PowerShell script that stealthily injects Base64-encoded shellcode into the target process, featuring anti-debugging techniques to evade detection.
This script dynamically decodes and executes a Base64 encoded Mimikatz script, allowing users to bypass security measures and run specified Mimikatz commands.
This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerShell commands.
Script made for bypassing antivirus using Powershell Injection method. Place your shellcode from msfvenom on line 15, the script can be combined with the UAC bypass technique in order to gain a privileged reverse shell.
This tool was created for the article: "An Exploration of AV Evasion Techniques". The script was made for educational reasons to demonstrate basic evasion techniques.
Red Teaming Tactics and Techniques
PS1 script to clear Windows Event Log without wevtutil or Clear-EventLog
Decrypting a powershell script and executing it using scriptblock smuggling, bypassing AMSI and some telemetry.
Herramienta defensiva de ciberseguridad que camufla los procesos en ejecucion. Renombra aplicaciones con nombres de servicios del sistema para hacerlas invisibles al escaneo de procesos. Linux y Windows.
Add a description, image, and links to the evasion topic page so that developers can more easily learn about it.
To associate your repository with the evasion topic, visit your repo's landing page and select "manage topics."