Repository History
Explore all analyzed open source repositories
Ghosting-AMSI: AMSI Bypass via RPC Hijack (NdrClientCall3)
Ghosting-AMSI presents an advanced technique to bypass AMSI detection by exploiting COM-level mechanics. It achieves this by hijacking the NdrClientCall3 function within the RPC runtime, intercepting AMSI scan requests before they reach the antivirus engine. This method provides a stealthy bypass without modifying AMSI.dll, making it highly effective against various detection mechanisms.
evilginx2: Advanced Phishing with 2FA Bypass Framework
evilginx2 is a powerful man-in-the-middle attack framework designed for advanced phishing campaigns. It effectively captures login credentials and session cookies, enabling the bypass of two-factor authentication. Written in Go, this standalone application integrates its own HTTP and DNS server for easy setup and use.