damonmohammadbagher Goto Github PK

backdoorppt

transform your payload.exe into one fake word doc (.ppt)

bev3

BasicEventViewer (BEV v3.0), this code will useful for All Blue Teamers.

bev4

BasicEventViewer4 (BEV v4.0), this code will useful for All Blue/Purple Teams , RealTime Monitoring Sysmon Events , Mitre Attack Detections via yaml files

damonmohammadbagher

damonmohammadbagher.github.io

ebook-bypassingavsbycsharp

eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)

ebook_bypassing-antiviruses-by-c-programming-v2.0

bypassing Anti-viruses by csharp programming v2.0

etwnetmonv3

ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

etwprocessmon2

ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

exfiltration-and-uploading-data-by-dns-traffic-aaaa-records-

Pdf File : Exfiltration and Uploading DATA by DNS Traffic (AAAA Records)

fakefilemaker

Social Engineering: Simple way to make a fake file for Backdoors

fswatch

File System Watcher via C# (Monitoring File Activity , Create/Delete/Change/Rename events + some Activity like Size/Attribute/Security Changes & LastAccess, LastWrite etc...)

manifest-creator

C# tool for make XML report from Network Hosts (report contains: Cpu,Bios,Motherboard,Vga,Sound,Hdd,Ram,Display-Monitor,IpAddress,Os,Users,...)

meterpreter_payload_detection

Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool

nativepayload_arp

C# code for Transferring Backdoor Payloads by ARP Traffic and Bypassing Anti-viruses (Slow)

nativepayload_arp2

Simple Script "NativePayload_ARP2.sh" for Sending DATA via ARP Bcast Traffic to all systems in (LAN) by "Vid" tag

nativepayload_asm3

NativePayload_ASM/AsynASM , Injecting Meterpreter Payload bytes into local Process via Delegation Technique [Technique D] + in-memory with delay Changing RWX to X [Bypassing AVs]

nativepayload_bssid

Transferring Backdoor Payload by BSSID and Wireless traffic

nativepayload_cbt

NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)

nativepayload_dcp

Compiling Csharp in-memory and Execute to bypass AVs

nativepayload_dim

NativePayload_DIM Dynamic native dll Injection in Memory , Injecting Native DLL bytes to local Process

nativepayload_dns

C# code for Transferring Backdoor Payloads by DNS Traffic and Bypassing Anti-viruses

nativepayload_dns2

C# code for Transferring Backdoor Payloads by DNS Traffic (A - PTR Records) and Bypassing Anti-viruses

nativepayload_dyn

Compiling Csharp in-memory and Execute to bypass AVs

nativepayload_dynlci

NativePayload_DynLCI , Dynamic Local Code Invoke , Injecting Meterpreter Payload bytes into local Process

nativepayload_http

Data Exfiltration via HTTP Traffic (C# and Shell Script)

nativepayload_icmp

C# code for Transferring Backdoor Payloads by ICMPv4 Traffic and bypassing Anti-Viruses

nativepayload_image

Transferring Backdoor Payloads with BMP Image Pixels

nativepayload_ip6dns

C# code for Transferring Backdoor Payloads by IPv6 Address (AAAA) records and DNS Traffic also Bypassing Anti-viruses

nativepayloads

All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming