BlackSnufkin / LitterBox
sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment
☆767Updated this week
Alternatives and similar repositories for LitterBox
Users that are interested in LitterBox are comparing it to the libraries listed below
Sorting:
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆746Updated last month
- Because AV evasion should be easy.☆716Updated 5 months ago
- AV/EDR Lab environment setup references to help in Malware development☆379Updated 2 months ago
- This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation inc…☆649Updated 2 weeks ago
- AV/EDR Evasion Lab for Training & Learning Purposes☆1,246Updated last week
- a tool to help operate in EDRs' blind spots☆730Updated 5 months ago
- Analyse your malware to surgically obfuscate it☆465Updated 2 months ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆373Updated 5 months ago
- Simulate the behavior of AV/EDR for malware development training.☆523Updated last year
- A RedTeam Toolkit☆397Updated last month
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆516Updated 11 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆589Updated this week
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆590Updated 10 months ago
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆532Updated last month
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆418Updated last month
- Real fucking shellcode encryptor & obfuscator tool☆857Updated 3 weeks ago
- Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…☆381Updated 7 months ago
- HookChain: A new perspective for Bypassing EDR Solutions☆517Updated 4 months ago
- ☆707Updated last year
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆550Updated 5 months ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆658Updated last year
- ☆352Updated last year
- Embed a payload inside a PNG file☆315Updated 6 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆354Updated 4 months ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆311Updated last year
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆518Updated 2 weeks ago
- Useful C2 techniques and cheatsheets learned from engagements☆502Updated last month
- Killer is a super simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆806Updated 10 months ago
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,651Updated 6 months ago
- Centralized resource for listing and organizing known injection techniques and POCs☆481Updated 3 weeks ago