{"id":19144485,"url":"https://github.com/damonmohammadbagher/meterpreter_payload_detection","last_synced_at":"2025-05-08T00:20:33.358Z","repository":{"id":111035612,"uuid":"75450093","full_name":"DamonMohammadbagher/Meterpreter_Payload_Detection","owner":"DamonMohammadbagher","description":"Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool","archived":false,"fork":false,"pushed_at":"2023-06-05T13:45:45.000Z","size":2480,"stargazers_count":161,"open_issues_count":2,"forks_count":63,"subscribers_count":12,"default_branch":"master","last_synced_at":"2025-03-31T15:33:40.898Z","etag":null,"topics":["etw","etw-monitoring-threads","etwmonthread","meterpreter","meterpreter-detection","meterpreter-payload-detection","meterpreter-signature","mpd","signature","thread-injection","thread-injection-detection"],"latest_commit_sha":null,"homepage":"","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/DamonMohammadbagher.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2016-12-03T03:49:41.000Z","updated_at":"2025-02-19T10:25:38.000Z","dependencies_parsed_at":"2023-04-20T15:32:27.184Z","dependency_job_id":null,"html_url":"https://github.com/DamonMohammadbagher/Meterpreter_Payload_Detection","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DamonMohammadbagher%2FMeterpreter_Payload_Detection","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DamonMohammadbagher%2FMeterpreter_Payload_Detection/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DamonMohammadbagher%2FMeterpreter_Payload_Detection/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DamonMohammadbagher%2FMeterpreter_Payload_Detection/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/DamonMohammadbagher","download_url":"https://codeload.github.com/DamonMohammadbagher/Meterpreter_Payload_Detection/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":252974221,"owners_count":21834221,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["etw","etw-monitoring-threads","etwmonthread","meterpreter","meterpreter-detection","meterpreter-payload-detection","meterpreter-signature","mpd","signature","thread-injection","thread-injection-detection"],"created_at":"2024-11-09T07:35:08.978Z","updated_at":"2025-05-08T00:20:33.274Z","avatar_url":"https://github.com/DamonMohammadbagher.png","language":"C#","funding_links":[],"categories":["\u003ca id=\"ecb63dfb62722feb6d43a9506515b4e3\"\u003e\u003c/a\u003e新添加"],"sub_categories":[],"readme":"# MPD  Meterpreter_Payload_Detection.exe Tool\n\nC# code Author                : Damon Mohammadbagher\n\nMeterpreter Signature Authors : Rohan Vazarkar, David Bitner\n\nNote : some API programming and Meterpreter Signature Created by these guys Rohan Vazarkar, David Bitner , not by me . \n\ni just made console version of code by C# and develop this Code by some API Functions. \n\nPlease don't ask me about Signature and Source code.\n\nbut i hope my application was useful for you all guys and i hope you all help me to make better versions for this code in future.\n\nthank you all .\n\nNote : IPS Mode required RunAs Administrators\n\nif you getting error , use command with one argument \n\nsyntax : Meterpreter_Payload_Detection.exe IPS\n\nsyntax : Meterpreter_Payload_Detection.exe IDS\n\nsyntax : Meterpreter_Payload_Detection.exe Blobblob\n\n\nVideo Published by Damon Mohammadbagher (bbxc9x00x1f)\n\n\nVideo for Meterpreter_Payload_Detection.exe Tool\n\nVideo 1 : https://youtu.be/Ka9c_d3sR_k\n\nBypassing AVs with NativePayload_DNS and Meterpreter_Payload_Detection\n\nVideo 2 : https://youtu.be/ngZl4PSfW6o\n\nVideo Description: Bypassing AVs with NativePayload_DNS.exe and Detecting Meterpreter Process by Meterpreter_Payload_Detection tool\n\n\nstep by step and for more information Please visit this link:\n\nDetecting Meterpreter Undetectable Payloads by Scanning Memory\nhttps://www.linkedin.com/pulse/detecting-meterpreter-undetectable-payloads-scanning-mohammadbagher?trk=pulse_spock-articles\n\nRelated Links : \n\nBypass all anti-viruses by Encrypted Payloads with C#\nhttps://www.linkedin.com/pulse/bypass-all-anti-viruses-encrypted-payloads-c-damon-mohammadbagher?trk=pulse_spock-articles\n\n### ETWMonThread\nDownload Link =\u003e https://github.com/DamonMohammadbagher/Meterpreter_Payload_Detection/tree/master/MPD/ETWMonThread\n\n![](https://github.com/DamonMohammadbagher/Meterpreter_Payload_Detection/blob/master/MPD/ETWMonThread/ETWMonThread.png)\n\n\n\u003cp\u003e\u003ca href=\"https://hits.seeyoufarm.com\"\u003e\u003cimg src=\"https://hits.seeyoufarm.com/api/count/incr/badge.svg?url=https://github.com/DamonMohammadbagher/Meterpreter_Payload_Detection\"/\u003e\u003c/a\u003e\u003c/p\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdamonmohammadbagher%2Fmeterpreter_payload_detection","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdamonmohammadbagher%2Fmeterpreter_payload_detection","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdamonmohammadbagher%2Fmeterpreter_payload_detection/lists"}