Alternatives and similar repositories for EDR-Bypass-demo:

Users that are interested in EDR-Bypass-demo are comparing it to the libraries listed below

• yanghaoi / CobaltStrike_CNA
  使用多种WinAPI进行权限维持的CobaltStrike脚本，包含API设置系统服务，设置计划任务，管理用户等。
  ☆537Updated 3 years ago
• huaigu4ng / SysWhispers3WinHttp
  Syscall免杀
  ☆505Updated 8 months ago
• seventeenman / CallBackDump
  dump lsass进程工具
  ☆549Updated last year
• testxxxzzz / geacon_pro
  重构了Cobaltstrike Beacon，行为对国内主流杀软免杀，支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.
  ☆290Updated 2 years ago
• xf555er / ShellcodeLoader
  This is my FirstRepository
  ☆320Updated last year
• LDrakura / Remote_ShellcodeLoader
  远程shellcode加载&权限维持+小功能
  ☆293Updated 9 months ago
• crisprss / Shellcode_Memory_Loader
  基于Golang实现的Shellcode内存加载器,共实现3中内存加载shellcode方式,UUID加载,MAC加载和IPv4加载,目前能过主流杀软(包括Windows Defender)
  ☆254Updated 3 years ago
• burpheart / CVE-2022-39197-patch
  CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.
  ☆313Updated 2 years ago
• jiushill / csplugin
  自己开的cs插件
  ☆242Updated 2 years ago
• TryGOTry / DogCs4.4
  cs4.4修改去特征狗狗版(美化ui,去除特征,自带bypass核晶截图等..)
  ☆572Updated 2 years ago
• pureqh / bypassAV
  免杀shellcode加载器
  ☆451Updated 3 years ago
• lintstar / CS-AutoPostChain
  基于 OPSEC 的 CobaltStrike 后渗透自动化链
  ☆422Updated 11 months ago
• HackerCalico / Magic_C2
  Red Team C2 Framework with AV/EDR bypass capabilities.
  ☆355Updated 2 weeks ago
• Axx8 / Bypass_AV
  Bypass_AV msf免杀，ShellCode免杀加载器 ，免杀shellcode执行程序 ，360&火绒&Windows Defender
  ☆223Updated 2 years ago
• 0x727 / SchTask_0x727
  创建隐藏计划任务，权限维持，Bypass AV
  ☆530Updated 3 years ago
• Mephostophiles / PengCode
  EXE转ShellCode工具
  ☆195Updated 2 years ago
• qi4L / Unhooker-go
  EDR绕过demo
  ☆288Updated last year
• crisprss / BypassUserAdd
  通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
  ☆335Updated 2 years ago
• wjlab / Darksteel
  域内自动化信息搜集利用工具
  ☆417Updated last year
• Ciyfly / microwaveo
  将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密
  ☆364Updated 2 years ago
• StormEyePro / StormBypassAV
  风暴免杀-bypass defender、360、vt
  ☆194Updated last year
• berryalen02 / PECracker
  针对PE文件的分离的攻防对抗工具，红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and…
  ☆248Updated 6 months ago
• Neo-Maoku / SearchAvailableExe
  寻找可利用的白文件
  ☆481Updated 9 months ago
• Pizz33 / 360QVM_bypass
  通过生成不同hash的ico并写入程序中，实现批量bypass360QVM
  ☆221Updated last year
• yzddmr6 / ASP.NET-Memshell-Scanner
  asp.net内存马检测工具
  ☆267Updated last year
• its-arun / CVE-2022-39197
  CobaltStrike <= 4.7.1 RCE
  ☆379Updated 2 years ago
• iframepm / FuckAV
  python写的一款免杀工具（shellcode加载器）BypassAV，国内杀软全过（windows denfend）2021-9-13
  ☆269Updated 4 months ago
• Peithon / JustC2file
  Burp插件，Malleable C2 Profiles生成器；可以通过Burp代理选中请求，生成Cobalt Strike的profile文件(CSprofile)
  ☆275Updated 3 years ago
• Z3ratu1 / geacon_plus
  CobaltStrike beacon written in golang
  ☆407Updated last year
• BeichenDream / CVE-2022-26134-Godzilla-MEMSHELL
  ☆336Updated 2 years ago