Alternatives and similar repositories for EDR-XDR-AV-Bypass-Shellcode-Loader:

Users that are interested in EDR-XDR-AV-Bypass-Shellcode-Loader are comparing it to the libraries listed below

• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆83Updated 2 years ago
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆98Updated 7 months ago
• Vasco0x4 / ShadeLoader
  ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
  ☆39Updated 8 months ago
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆18Updated this week
• ice-wzl / wmiexec2
  wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures …
  ☆34Updated 10 months ago
• EvilBytecode / RubyRedOps
  💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby
  ☆9Updated this week
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆42Updated last year
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆76Updated 2 years ago
• djackreuter / btexec
  Execute shellcode via Bluetooth device authentication
  ☆38Updated 2 months ago
• SaadAhla / D1rkSleep
  Improved version of EKKO by @5pider that Encrypts only Image Sections
  ☆119Updated 2 years ago
• senzee1984 / Windows_x64_Tcp_Reverse_Shell_Shellcode
  Null-free shellcode for TCP reverse shell on Windows x64
  ☆55Updated last year
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆47Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆98Updated last year
• c3r3br4t3 / ShadowRDP
  ☆69Updated last year
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆89Updated 10 months ago
• qwqdanchun / ScreenShot-BOF
  ☆42Updated last year
• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆69Updated last year
• BlackShell256 / ShellGo
  Simple Shellcode Loader tool
  ☆25Updated last year
• Adaptix-Framework / Extension-Kit
  AdaptixFramework Extension Kit
  ☆60Updated this week
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆63Updated 8 months ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆148Updated 9 months ago
• b4nbird / shellcode_entropy_less
  replace the shellcode chatacters so that reduce the entropy
  ☆16Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆83Updated last month
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆55Updated 8 months ago
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF
  ☆155Updated 2 years ago
• EspressoCake / Defender-Exclusions-Creator-BOF
  ☆80Updated last year
• tdeerenberg / InlineWhispers3
  Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion
  ☆76Updated 2 weeks ago
• S12cybersecurity / PDFTypeSpoofing
  PDF Icon File Type Spoofer
  ☆14Updated 9 months ago
• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆44Updated 11 months ago