Repository History

Explore all analyzed open source repositories

Topic: PowerShell
Ghosting-AMSI: AMSI Bypass via RPC Hijack (NdrClientCall3)

Ghosting-AMSI: AMSI Bypass via RPC Hijack (NdrClientCall3)

Ghosting-AMSI presents an advanced technique to bypass AMSI detection by exploiting COM-level mechanics. It achieves this by hijacking the NdrClientCall3 function within the RPC runtime, intercepting AMSI scan requests before they reach the antivirus engine. This method provides a stealthy bypass without modifying AMSI.dll, making it highly effective against various detection mechanisms.

Dec 5, 2025
View Details
Red-Team-Playbooks: Comprehensive Open-Source Security Notes and Tools

Red-Team-Playbooks: Comprehensive Open-Source Security Notes and Tools

The `Red-Team-Playbooks` repository by 0xsyr0 is an invaluable open-source resource for cybersecurity professionals. It provides a comprehensive collection of cutting-edge security notes, tools, techniques, and procedures specifically designed to aid in Red Team assessments. This repository serves as a practical guide, covering various stages of offensive operations.

Oct 12, 2025
View Details
Page 1