7h3w4lk3r/Kill-Floor external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

7h3w4lk3r/Kill-Floor

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/7h3w4lk3r/Kill-Floor)

Close

7h3w4lk3r / Kill-FloorView on GitHubMore

• External links
• Readme badge

AV/EDR killer using BYOVD technique

☆44Sep 27, 2024Updated last year

Alternatives and similar repositories for Kill-Floor

Users that are interested in Kill-Floor are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• OtterHacker / CoffLoader

  View on GitHub
  ☆61Jan 9, 2023Updated 3 years ago
• nickzer0 / PersisTask-BOF

  View on GitHub
  A BOF to create a scheduled task using a COM object.
  ☆16Dec 3, 2024Updated last year
• p1d3er / KillEverything

  View on GitHub
  Kill Everything AV/EDR
  ☆27Nov 18, 2024Updated last year
• D4rthMaulCop / DarthNetLoader

  View on GitHub
  ☆15Aug 17, 2023Updated 2 years ago
• BambiZombie / ThreadlessSpawn

  View on GitHub
  A Simple PoC
  ☆22May 24, 2024Updated last year
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• kanadeblisst00 / read_wechat_contacts

  View on GitHub
  读取微信联系人列表，版本（3.9.12.51）
  ☆13Mar 22, 2025Updated last year
• M09Ic / SharpRDPConns

  View on GitHub
  ☆19Jan 25, 2024Updated 2 years ago
• klezVirus / ThreadPoolExecChain

  View on GitHub
  A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack
  ☆100Dec 22, 2025Updated 3 months ago
• EddieIvan01 / rustdesk-hvnc

  View on GitHub
  HVNC based on RustDesk
  ☆112May 1, 2024Updated last year
• Kharos102 / interceptor

  View on GitHub
  Sample Rust Hooking Engine
  ☆36Apr 5, 2024Updated last year
• Dump-GUY / sc2pe

  View on GitHub
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65May 1, 2023Updated 2 years ago
• Hagrid29 / BOF-DCOMPotato-PrintNotify

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
  ☆98Mar 20, 2023Updated 3 years ago
• CBLabresearch / PhantomExecution

  View on GitHub
  Self Cleanup in post-ex job
  ☆59Sep 10, 2024Updated last year
• redr0nin / Serenity

  View on GitHub
  C# DInvoke Shellcode Runner
  ☆31Feb 10, 2025Updated last year
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• INotGreen / Nopowershell

  View on GitHub
  Call the CLR interface from memory to load powershell, process-less powershell
  ☆15Sep 7, 2023Updated 2 years ago
• 7h3w4lk3r / RexLdr

  View on GitHub
  Rex Shellcode Loader for AV/EDR evasion
  ☆35Apr 7, 2024Updated last year
• BambiZombie / bypass_uac_bof

  View on GitHub
  一个普通的BOF用来BypassUAC
  ☆22Apr 6, 2024Updated last year
• trainr3kt / MemReader_BoF

  View on GitHub
  ☆46Dec 5, 2023Updated 2 years ago
• Ethicalrat / Evasive-Loader

  View on GitHub
  Evasive loader to bypass static detection
  ☆60Jan 15, 2024Updated 2 years ago
• KiExitDispatcher / EDR-XDR-AV-Killer

  View on GitHub
  Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
  ☆293Apr 21, 2025Updated 11 months ago
• RootUp / XRayC2

  View on GitHub
  AWS X-Ray for Covert Command & Control
  ☆45Oct 13, 2025Updated 5 months ago
• Like0x / SharpBlock

  View on GitHub
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆24May 10, 2021Updated 4 years ago
• zimnyaa / PhaseDive

  View on GitHub
  Sleep Obfuscation
  ☆45Oct 13, 2022Updated 3 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• je5442804 / WPTaskScheduler_CVE-2024-49039

  View on GitHub
  WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler
  ☆137Jul 21, 2025Updated 8 months ago
• zero2504 / COMouflage

  View on GitHub
  COM-based DLL Surrogate Injection
  ☆151Dec 9, 2025Updated 3 months ago
• rasta-mouse / PacketAlchemy

  View on GitHub
  Playing with packets in C#
  ☆15Aug 16, 2024Updated last year
• lleon1435 / BypassAV

  View on GitHub
  This map lists the essential techniques to bypass anti-virus and EDR
  ☆15Aug 9, 2023Updated 2 years ago
• EspressoCake / ReadRemoteProcessCommandline_BOF

  View on GitHub
  ☆29May 10, 2024Updated last year
• alienkeric / VisualStudio-RCE-EvilSln

  View on GitHub
  A New Exploitation Technique for Visual Studio Projects
  ☆11Nov 5, 2023Updated 2 years ago
• huoji120 / APT_Step_Bear_Inject

  View on GitHub
  复现《EDR的梦魇：Storm-0978使用新型内核注入技术“Step Bear”》
  ☆161Oct 27, 2024Updated last year
• NTT-Security-Japan / pac2

  View on GitHub
  Power Automate C2 (PAC2) : Stealth living-off-the-cloud C2 framework.
  ☆36Apr 16, 2024Updated last year
• Hypnoze57 / SharpHound4Cobalt

  View on GitHub
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆59Apr 13, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• CICADA8-Research / RpcMotion

  View on GitHub
  Execute commands, in/exfiltrate files using your custom RPC Server
  ☆66Jan 13, 2026Updated 2 months ago
• eversinc33 / GpuDecryptShellcode

  View on GitHub
  XOR decrypting shellcode using the GPU with OpenCL.
  ☆121May 22, 2025Updated 10 months ago
• CICADA8-Research / TypeLibWalker

  View on GitHub
  TypeLib persistence technique
  ☆141Oct 22, 2024Updated last year
• itm4n / PPLrevenant

  View on GitHub
  Bypass LSA protection using the BYODLL technique
  ☆177Sep 21, 2024Updated last year
• saucer-man / chrome_get_cookie

  View on GitHub
  利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html
  ☆15Sep 9, 2021Updated 4 years ago
• Ben-Lichtman / reloader

  View on GitHub
  Reflective DLL self-loading as a library
  ☆21May 3, 2025Updated 10 months ago
• MaorSabag / Adaptix-StealthPalace

  View on GitHub
  Crystal Palace RDLL loader for Adaptix C2 with Ekko sleep obfuscation, IAT hooking via PICO, and per-section permission restoration
  ☆97Mar 21, 2026Updated last week