Alternatives and similar repositories for EDR-XDR-AV-Bypass-Shellcode-Loader

Users that are interested in EDR-XDR-AV-Bypass-Shellcode-Loader are comparing it to the libraries listed below

• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆30Updated 3 weeks ago
• EvilBytecode / Evilbytecode-Shellcode-Go-Tactics
  A mutliple tactics to execute shellcode in go :}
  ☆18Updated 3 weeks ago
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆84Updated 2 years ago
• EvilBytecode / RubyRedOps
  💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby
  ☆10Updated 3 weeks ago
• Vasco0x4 / ShadeLoader
  ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
  ☆39Updated 9 months ago
• ice-wzl / wmiexec2
  wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures …
  ☆34Updated 11 months ago
• djackreuter / btexec
  Execute shellcode via Bluetooth device authentication
  ☆38Updated 2 months ago
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆42Updated last year
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆44Updated last year
• ahron-chet / GuardBypassToolkit
  A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…
  ☆21Updated 10 months ago
• b4nbird / shellcode_entropy_less
  replace the shellcode chatacters so that reduce the entropy
  ☆17Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆98Updated last year
• qwqdanchun / ScreenShot-BOF
  ☆42Updated last year
• sexyiam / UAC-Bypass
  UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.
  ☆47Updated last year
• nullsection / Sneaky-DLL-Stager
  Reasonably undetected shellcode stager and executer.
  ☆37Updated 8 months ago
• yutianqaq / Anti-Sandbox-Go
  Some anti-sandbox techniques implemented in Golang.
  ☆11Updated last year
• iss4cf0ng / DuplexSpyCS
  Remote Access Tool written in C#
  ☆29Updated last month
• c3r3br4t3 / ShadowRDP
  ☆71Updated last year
• florylsk / NtDump
  Indirect NT syscalls LSASS dumper.
  ☆44Updated last year
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆100Updated 8 months ago
• Ethicalrat / Evasive-Loader
  Evasive loader to bypass static detection
  ☆60Updated last year
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆47Updated last year
• SaadAhla / D1rkSleep
  Improved version of EKKO by @5pider that Encrypts only Image Sections
  ☆119Updated 2 years ago
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆39Updated last year
• Adaptix-Framework / Extension-Kit
  AdaptixFramework Extension Kit
  ☆77Updated 2 weeks ago
• kyxiaxiang / Safetasklist
  Help red teams find opsec processes during engagements
  ☆40Updated 5 months ago
• EspressoCake / Defender-Exclusions-Creator-BOF
  ☆80Updated last year
• fern89 / C2
  A basic C2 framework written in C
  ☆61Updated 10 months ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆76Updated 2 years ago
• wsummerhill / DictionShellcode
  Encode shellcode into dictionary words for evasion and entropy reduction
  ☆25Updated 6 months ago