HackingLZ/defender_overview external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

HackingLZ/defender_overview

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/HackingLZ/defender_overview)

Close

HackingLZ / defender_overviewView on GitHubMore

• External links
• Readme badge

Overview of MS Defender

☆119Feb 20, 2026Updated last month

Alternatives and similar repositories for defender_overview

Users that are interested in defender_overview are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• warpedatom / OffsetInspect

  View on GitHub
  PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.
  ☆33Dec 31, 2025Updated 3 months ago
• kyxiaxiang / 360WFP_Exploit

  View on GitHub
  BYOVD: Use 360 ​​WFP driver to block EDR/XDR network connection.
  ☆114Feb 10, 2026Updated last month
• umpolungfish / byvalver

  View on GitHub
  takes shellcode bad-bytes and banishes them, returning cleaned shellcode with preserved functionalities
  ☆62Mar 1, 2026Updated last month
• DeploymentBunny / PAWDeploy

  View on GitHub
  ☆18Jun 4, 2025Updated 10 months ago
• carved4 / go-wincall

  View on GitHub
  load arbitrary dlls, call any exported function, calls execute inside g0 as normal syscalls do from the traditional route, no syscall or …
  ☆28Feb 18, 2026Updated last month
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• JeanBonBeurre34 / cc-agent

  View on GitHub
  ☆28Mar 14, 2026Updated 3 weeks ago
• HulkOperator / Spoof-RetAddr

  View on GitHub
  ☆37Nov 8, 2024Updated last year
• epotseluevskaya / ASPX_WebShell_COFFLoader

  View on GitHub
  ASPX Web Shell with COFF Loader
  ☆126Mar 10, 2026Updated last month
• Zeyad-Azima / ShellcodeGenZ

  View on GitHub
  GenZ Shellcode Generator to execute commands with winExec API
  ☆22Apr 27, 2025Updated 11 months ago
• jonny-jhnson / ProcCallback

  View on GitHub
  An example of how a driver can register a handle creation callback.
  ☆16Jun 12, 2023Updated 2 years ago
• Meowmycks / trustme

  View on GitHub
  BOF to impersonate TrustedInstaller via DISM API trigger and thread impersonation
  ☆119Mar 27, 2026Updated 2 weeks ago
• PrincipleCheck / KslKatzBof

  View on GitHub
  ☆59Updated this week
• Print3M / epic

  View on GitHub
  PIC shellcode (C/C++) development toolkit designed for malware developers.
  ☆127Dec 23, 2025Updated 3 months ago
• joaoviictorti / rustbof

  View on GitHub
  A Rust template for writing Beacon Object Files (BOFs)
  ☆119Feb 11, 2026Updated last month
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• ANYLNK / STProcessMonitorBYOVD

  View on GitHub
  The PoC for CVE-2025-70795 / CVE-2026-0828 and updated driver
  ☆44Mar 13, 2026Updated 3 weeks ago
• Maldev-Academy / Alphabetfuscation

  View on GitHub
  Convert your shellcode into an ASCII string
  ☆126Jun 27, 2025Updated 9 months ago
• pard0p / Remote-BOF-Runner

  View on GitHub
  Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …
  ☆94Jan 2, 2026Updated 3 months ago
• h41th / Simple-Crystal-Palace-RDLL-template-for-Adaptix

  View on GitHub
  ☆43Feb 12, 2026Updated last month
• WKL-Sec / slack-udc2

  View on GitHub
  Cobalt Strike UDC2 implementation that provides an Slack C2 channel
  ☆68Jan 5, 2026Updated 3 months ago
• incursi0n / ClipboardStealBOF

  View on GitHub
  An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…
  ☆104Jan 9, 2026Updated 3 months ago
• Maldev-Academy / MaldevAcademyLdr.2

  View on GitHub
  RunPE implementation with multiple evasive techniques (2)
  ☆278Sep 25, 2025Updated 6 months ago
• whokilleddb / sinister-vsix

  View on GitHub
  Blog/Journal on how to backdoor VSCode extensions
  ☆80Feb 24, 2026Updated last month
• nicocha30 / ligolo-iwa

  View on GitHub
  A Ligolo-ng JavaScript agent working inside Chrome & Chromium-based browsers by leveraging Isolated Web Applications.
  ☆115Mar 30, 2026Updated last week
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• dirkjanm / family-of-client-ids-research

  View on GitHub
  Research into Undocumented Behavior of Azure AD Refresh Tokens
  ☆13Oct 27, 2023Updated 2 years ago
• klezVirus / BYOUD

  View on GitHub
  Bring your own Unwind Data Framework
  ☆116Mar 15, 2026Updated 3 weeks ago
• dmcxblue / PyObscura

  View on GitHub
  A python script that automates a C2 Profile build
  ☆48Dec 14, 2025Updated 3 months ago
• 0xTriboulet / emerald_template

  View on GitHub
  A cmake template for crystal palace
  ☆40Dec 20, 2025Updated 3 months ago
• emdnaia / OdinLdr

  View on GitHub
  Cobaltstrike UDRL with memory evasion
  ☆15May 16, 2024Updated last year
• NUL0x4C / HookingLsassForCredentials

  View on GitHub
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆61May 12, 2025Updated 10 months ago
• whokilleddb / hoontr

  View on GitHub
  A hoontr must hoont
  ☆107Nov 27, 2025Updated 4 months ago
• kfallahi / UnderlayCopy

  View on GitHub
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆240Oct 30, 2025Updated 5 months ago
• FalconForceTeam / TelemetryCollectionManager

  View on GitHub
  Manage and maintain Defender XDR custom collection configuration
  ☆34Nov 19, 2025Updated 4 months ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• tin-z / CVE-2025-27363

  View on GitHub
  Integer overflow in FreeType software, which also affects Chrome
  ☆30Aug 27, 2025Updated 7 months ago
• HackmichNet / AzTokenFinder

  View on GitHub
  ☆107Jan 4, 2023Updated 3 years ago
• cventour / PoSH

  View on GitHub
  Random Powershell scripts
  ☆13Feb 13, 2024Updated 2 years ago
• CodeXTF2 / CustomC2ChannelTemplate

  View on GitHub
  template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.
  ☆100Jan 10, 2026Updated 3 months ago
• ColeHouston / theHandler-BOF

  View on GitHub
  Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.
  ☆39Aug 5, 2025Updated 8 months ago
• secureworks / primary-refresh-token-viewer

  View on GitHub
  ☆12Oct 24, 2022Updated 3 years ago
• PaulHCode / RecurringADChecks

  View on GitHub
  ☆13Feb 10, 2022Updated 4 years ago