EvilGreys / Disable-Windows-Defender-
☆231Updated this week
Related projects: ⓘ
- ☆222Updated this week
- Amsi Bypass payload that works on Windwos 11☆369Updated last year
- Simulate the behavior of AV/EDR for malware development training.☆443Updated 7 months ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆254Updated last year
- Different methods to get current username without using whoami☆170Updated 7 months ago
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆176Updated 4 months ago
- Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8☆345Updated 3 weeks ago
- yet another AV killer tool using BYOVD☆259Updated 9 months ago
- Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022☆403Updated 2 months ago
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆468Updated last month
- Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)☆417Updated 3 weeks ago
- Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process☆225Updated 7 months ago
- CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as A…☆277Updated 8 months ago
- Materials for the workshop "Red Team Ops: Havoc 101"☆325Updated last year
- A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…☆378Updated last year
- ScareCrow - Payload creation framework designed around EDR bypass.☆240Updated last year
- Unorthodox and stealthy way to inject a DLL into the explorer using icons☆289Updated 2 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆465Updated 2 months ago
- Protected Process Dumper Tool☆510Updated last year
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆367Updated last month
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆148Updated 7 months ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆137Updated 3 months ago
- ☆242Updated 8 months ago
- Analyse your malware to surgically obfuscate it☆373Updated 11 months ago
- RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++☆232Updated last year
- ☆181Updated 7 months ago
- PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.☆378Updated 11 months ago
- All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming☆222Updated 2 weeks ago
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆485Updated last month
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆439Updated 3 months ago