A Blind EDR Project for Educational Purposes
☆101Jan 18, 2025Updated last year
Alternatives and similar repositories for BlindEdr
Users that are interested in BlindEdr are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆22Jan 15, 2025Updated last year
- Kill Everything AV/EDR☆27Nov 18, 2024Updated last year
- Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…☆1,296Jun 21, 2024Updated last year
- 基于个人习惯使用C/C++的shellcode开发项目模板☆50Aug 20, 2024Updated last year
- ☆21Oct 7, 2022Updated 3 years ago
- ☆50Jul 9, 2025Updated 8 months ago
- 上传文件到对象存储(OSS、OBS、S3、KS3)☆10Oct 9, 2021Updated 4 years ago
- A basic C2 framework written in C☆59Jul 7, 2024Updated last year
- ☆70Jul 26, 2024Updated last year
- A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具,支持正向,反向socks5代理隧道的搭建,支持跨平台使用。☆466Mar 2, 2025Updated last year
- tsh多终端代理通信☆19Feb 26, 2025Updated last year
- Fenrir 是一个基于 MCP 协议与 AST 技术的代码审计工具,旨在解决安全研究与自动化代码审计领域中,面对大规模、结构复杂甚至反编译代码时,传统代码搜索与分析手段效率低、准确性差的问题。☆177Oct 21, 2025Updated 5 months ago
- 使用Visral Studio开发ShellCode☆239Oct 11, 2023Updated 2 years ago
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆161Oct 27, 2024Updated last year
- 云原生安全漏洞☆17Sep 9, 2025Updated 6 months ago
- 通过RPC创建计划任务☆31May 18, 2025Updated 10 months ago
- Tool developed using csharp (.net 4.5) for compressing and encrypting files to shorten transfer times. Supports multi-file compression an…☆14Feb 15, 2024Updated 2 years ago
- 看起来叫BabyBypass,实际啥都会记一些☆16Sep 10, 2023Updated 2 years ago
- 寻找可利用的白�文件☆559Aug 18, 2025Updated 7 months ago
- Binary Hollowing☆95Sep 10, 2024Updated last year
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆181Aug 3, 2024Updated last year
- ☆127Jan 23, 2025Updated last year
- 基于ants框架设计的网络请求并发模型☆17Nov 27, 2023Updated 2 years ago
- 无Windows API的新型恶意程序:自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究,A new type of malicious program without Windows API☆88Mar 27, 2025Updated 11 months ago
- demo unhooking functions in ntdll☆28Jul 15, 2025Updated 8 months ago
- Exploiting the KsecDD Windows driver through Server Silos☆77Nov 11, 2024Updated last year
- This is the tool to dump the LSASS process on modern Windows 11☆563Nov 1, 2025Updated 4 months ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆91Jul 26, 2025Updated 7 months ago
- ☆87Jan 21, 2025Updated last year
- CobaltStrike beacon written in golang☆459Oct 13, 2023Updated 2 years ago
- HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.☆721Jul 19, 2023Updated 2 years ago
- Stealthy Payload loader with Anti-EDR Capabilities☆135Apr 21, 2025Updated 11 months ago
- Beacon Object File (BOF) for identifying dependent child services of a given parent.☆19Jun 20, 2025Updated 9 months ago
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆44Dec 7, 2024Updated last year
- OrcaC2是一款基于Websocket加密通信的多功能C&C框架,使用Golang实现。☆676Dec 30, 2022Updated 3 years ago
- 一个基于Codeql规则的go靶场☆41Feb 19, 2025Updated last year
- 一个demo☆23Apr 2, 2024Updated last year
- portreuse reuseport 端口复用☆61Aug 27, 2023Updated 2 years ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆460Aug 2, 2024Updated last year