heraclesxeon
Premium member
Premium
- Thread Author
- #2
JlaiveJlaive is an antivirus evasion tool that can convert executables into undetectable batch files. Obfuscated .NET assemblies are not guaranteed to work.
![[Image: 218559480-3f802753-4683-4efc-b6f9-240dab858396.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fuser-images.githubusercontent.com%2F119069565%2F218559480-3f802753-4683-4efc-b6f9-240dab858396.png "[Image: 218559480-3f802753-4683-4efc-b6f9-240dab858396.png]")
Features
![[Image: 204138386-4fe36a08-106b-4671-9679-37b8d5f11068.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fuser-images.githubusercontent.com%2F119069565%2F204138386-4fe36a08-106b-4671-9679-37b8d5f11068.png "[Image: 204138386-4fe36a08-106b-4671-9679-37b8d5f11068.png]")
![[Image: 68747470733a2f2f6d656469612e646973636f72...6e2e706e67]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fcamo.githubusercontent.com%2F989cc095ee6f187385f9cf92b5a79e1fd3b84412da6808884967a524dbccc47d%2F68747470733a2f2f6d656469612e646973636f72646170702e6e65742f6174746163686d656e74732f3936313930353733363133393535343837362f3938323932353631383337373238313533362f756e6b6e6f776e2e706e67 "[Image: 68747470733a2f2f6d656469612e646973636f72...6e2e706e67]")
Demo video withDCRATvs Microsoft Defender:https://www.youtube.com/watch?v=Rz90fPWWDy0
Known issues
SharpUnhooker:https://github.com/GetRektBoy724/SharpUnhooker
DisclaimerThis project was made for educational purposes only. I am not responsible if you choose to use this illegally/maliciously.![[Image: 68747470733a2f2f6d656469612e646973636f72...642e706e67]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fcamo.githubusercontent.com%2F91a459800a934b6a7ca62c140ef22b5b8dc0aafa43fcf905ddf23cb5a6dc995c%2F68747470733a2f2f6d656469612e646973636f72646170702e6e65742f6174746163686d656e74732f3935393736323930303434333037303438352f3938373930303337393836333834363936322f556e7469746c65642e706e67 "[Image: 68747470733a2f2f6d656469612e646973636f72...642e706e67]")
![[Image: 218559480-3f802753-4683-4efc-b6f9-240dab858396.png]](https://user-images.githubusercontent.com/119069565/218559480-3f802753-4683-4efc-b6f9-240dab858396.png "[Image: 218559480-3f802753-4683-4efc-b6f9-240dab858396.png]")
Features
- .NET/Native (x64) support
- AES 256 /XOR encryption
- Compression
- Anti Debug
- Anti VM
- Melt file (self delete)
- Bind files
- AMSI bypass
- ETW bypass
- API unhooking
![[Image: 204138386-4fe36a08-106b-4671-9679-37b8d5f11068.png]](https://user-images.githubusercontent.com/119069565/204138386-4fe36a08-106b-4671-9679-37b8d5f11068.png "[Image: 204138386-4fe36a08-106b-4671-9679-37b8d5f11068.png]")
Demo video withDCRATvs Microsoft Defender:https://www.youtube.com/watch?v=Rz90fPWWDy0
Known issues
- Code:
Hidden
option does not work on Windows Terminal.
- Not compatible with Python EXEs.
- Remove the use of
Code:
Add-Type
for decryption and decompression
SharpUnhooker:https://github.com/GetRektBoy724/SharpUnhooker
DisclaimerThis project was made for educational purposes only. I am not responsible if you choose to use this illegally/maliciously.
