AV/EDR evasion via direct and indirect system calls Windows NT 3.1 through Windows 11 24H2 · x64 · x86 · WoW64 · ARM64
☆80Feb 23, 2026Updated last week
Alternatives and similar repositories for SysWhispers4
Users that are interested in SysWhispers4 are comparing it to the libraries listed below
Sorting:
- ☆18Sep 1, 2025Updated 6 months ago
- Library and applications for interfacing with eidc32 and intelli-m☆13Oct 18, 2021Updated 4 years ago
- A self-hosted Armory implementation.☆21Jan 1, 2026Updated 2 months ago
- Beacon Object Files (BOFs) for Cobalt Strike and Havoc C2. Implementations of Active Directory attacks and post-exploitation techniques.☆101Jan 26, 2026Updated last month
- Generate Secure, Polymorphic, Evasive (lol) Payloads☆29Oct 2, 2025Updated 5 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆29Jul 25, 2023Updated 2 years ago
- ☆48Oct 14, 2025Updated 4 months ago
- AppLocker-Based EDR Neutralization☆321Dec 19, 2025Updated 2 months ago
- NSecSoftBYOVD POC☆57Feb 12, 2026Updated 2 weeks ago
- ☆54Oct 13, 2025Updated 4 months ago
- Block Windows Defender by deny ACL☆77Jan 12, 2026Updated last month
- Load and execute a common object file format (COFF) in the current process☆32Mar 9, 2024Updated last year
- A modern GoPhish fork with improved tracking accuracy and smarter detection.☆86Feb 16, 2026Updated 2 weeks ago
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆59Apr 13, 2025Updated 10 months ago
- ☆79Aug 5, 2024Updated last year
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆36Nov 24, 2024Updated last year
- Find private tracks on soundcloud by bruteforcing shareable links☆13Apr 24, 2024Updated last year
- Check robustness of your (their) Active Directory accounts passwords☆45Mar 5, 2025Updated 11 months ago
- Proxll is a tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h☆41Oct 8, 2024Updated last year
- EDRcoin source☆10Mar 23, 2016Updated 9 years ago
- ☆38Jan 14, 2022Updated 4 years ago
- Arsenal of modules to beacon postex☆94Feb 18, 2026Updated 2 weeks ago
- Learning Process Injection and Hollowing techniques☆42Jun 26, 2022Updated 3 years ago
- A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.☆71Nov 16, 2025Updated 3 months ago
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆99Dec 22, 2025Updated 2 months ago
- TokenCert☆102Nov 15, 2024Updated last year
- ATHERCRC32 Provide developers with a complete framework for using CRC32 in functions/classes in memory, and protecting your software agai…☆15Jan 29, 2021Updated 5 years ago
- Bypassing Amsi using LdrLoadDll☆47Jan 8, 2025Updated last year
- Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…☆18Aug 13, 2025Updated 6 months ago
- Help red teams find opsec processes during engagements☆42Dec 7, 2024Updated last year
- ☆12Jul 14, 2025Updated 7 months ago
- Classic DLL injection. Download dll from url and inject. Simple C++ implementation☆10Apr 16, 2022Updated 3 years ago
- Challenge 1 of The Auror Project - Setup AD Lab automatically☆12Apr 26, 2022Updated 3 years ago
- A collection of CyberChef recipes for decoding and decrypting strings in HTML attachments☆10Jul 10, 2024Updated last year
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆45Nov 29, 2024Updated last year
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆64Apr 2, 2025Updated 11 months ago
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆107Mar 10, 2025Updated 11 months ago
- ☆198Mar 28, 2025Updated 11 months ago
- This repository implements Threadless Injection in C☆172Dec 23, 2023Updated 2 years ago