Add: rasta-mouse/AmsiScanBufferBypass to Defense Evasion section

2024-06-24 12:42:11 +00:00 · 2021-08-22 17:53:19 +07:00 · 2021-08-22 17:53:19 +07:00 · 4a96a5ce2a
commit 4a96a5ce2a
parent 32d0587ca1
1 changed files with 4 additions and 0 deletions
--- a/Offensive.md
+++ b/Offensive.md
@ -1207,6 +1207,10 @@ Some tools can be categorized in more than one category. But because the current
        <td><a href="https://github.com/PwnDexter/SharpEDRChecker">PwnDexter/SharpEDRChecker</a></td>
        <td>Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories, installed services and each service binaries metadata, installed drivers and each drivers metadata, all for the presence of known defensive products such as AV's, EDR's and logging tools.</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/rasta-mouse/AmsiScanBufferBypass">rasta-mouse/AmsiScanBufferBypass</a></td>
+        <td>Bypass AMSI by patching AmsiScanBuffer</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/RedCursorSecurityConsulting/PPLKiller">RedCursorSecurityConsulting/PPLKiller</a></td>
        <td>Tool to bypass LSA Protection (aka Protected Process Light)</td>