Nariod / ronflex
Attempts to suspend all known AV/EDRs processes on Windows using syscalls and the undocumented NtSuspendProcess API. Made with <3 for pentesters. Written in Rust.
☆13Updated last year
Alternatives and similar repositories for ronflex:
Users that are interested in ronflex are comparing it to the libraries listed below
- Create PDFs with HTML smuggling attachments that save on opening the document.☆29Updated last year
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Event Tracing for Windows EDR bypass in Rust (usermode)☆19Updated 10 months ago
- ☆17Updated 6 months ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆38Updated 2 years ago
- A collection of source code, binaries, and compilation scripts designed to bypass detection