Giters

ProcessusT / SharpVenoma

CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution

Home Page:https://processus.site

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

antivirusbypassedrevasionpentestredteamtool

SharpVenoma



C# reimplementation of Venoma


Another C# Cobalt Strike beacon dropper with custom indirect syscalls execution




> A custom CSharp raw beacon dropper with :

> DLL Unhooking (Perun's fart)
> ETW Patching
> AMSI Patching
> EnumPageFilesW execution
> Early Bird APC Execution
> Indirect syscall execution
>

All functions are included, choose what you need and remove anything else before compiling.




Usage


Generate your raw payload and use the aes.py file to encrypt the data :



Update the source code and choose what you want to execute :





About

CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution

https://processus.site

antivirusbypassedrevasionpentestredteamtool

Languages

Language:C# 99.8%Language:Python 0.2%