 Spencer McIntyre
|
82c078c888
|
Updates for psexec usage
|
2021-05-25 14:38:52 -04:00 |
|
|
Spencer McIntyre
|
2dc2831d7a
|
Obfuscate the ScriptBlock class reference
|
2021-05-25 14:38:52 -04:00 |
|
|
Spencer McIntyre
|
4920800340
|
Add a null check to the PSH bypass code
Powershell version 3 does not have
`System.Management.Automation.AmsiUtils` so check that it's present
before setting the field.
|
2021-05-25 14:38:52 -04:00 |
|
|
Spencer McIntyre
|
eddb6af650
|
Add block level randomization for the PSH bypass
|
2021-05-25 14:38:52 -04:00 |
|
|
Spencer McIntyre
|
86df5b0122
|
Add the data file for bypassing PSH protection
|
2021-05-19 12:42:43 -04:00 |
|
|
Christophe De La Fuente
|
ab9dd177b7
|
Add kernel file version check to avoid BSOD on Win10 x86
|
2021-02-15 21:10:10 +01:00 |
|
|
Christophe De La Fuente
|
eaa550fa97
|
Changes compiler subsystem to window
|
2021-02-02 17:57:52 +01:00 |
|
|
Christophe De La Fuente
|
4b3379a821
|
Remove CRT library from the Template
|
2021-01-28 19:59:46 +01:00 |
|
|
Christophe De La Fuente
|
8af5ee8a32
|
Add Process Herpaderping evasion module and binaries
|
2021-01-22 18:33:10 +01:00 |
|