PaulNorman01 / Forensia
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
☆746Updated last year
Alternatives and similar repositories for Forensia:
Users that are interested in Forensia are comparing it to the libraries listed below
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,168Updated last year
- AV/EDR Evasion Lab for Training & Learning Purposes☆1,087Updated last week
- Sandman is a NTP based backdoor for red team engagements in hardened networks.☆781Updated 9 months ago
- Killer is a simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆778Updated 6 months ago
- ☆686Updated 10 months ago
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆939Updated last year
- PowerShell Ransomware Simulator with C2 Server☆476Updated last year
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆564Updated 7 months ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆646Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,172Updated last year
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,575Updated 2 months ago
- A light-weight first-stage C2 implant written in Nim (and Rust).☆823Updated 5 months ago
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆504Updated 5 months ago
- Dump cookies and credentials directly from Chrome/Edge process memory☆1,111Updated 2 months ago
- Syscall Shellcode Loader (Work in Progress)☆1,151Updated 8 months ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆892Updated 7 months ago
- HVNC for Cobalt Strike☆1,182Updated last year
- ☆468Updated 2 months ago
- sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment☆453Updated this week
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST☆712Updated last year
- Awesome EDR Bypass Resources For Ethical Hacking☆1,062Updated last week
- Simulate the behavior of AV/EDR for malware development training.☆460Updated 11 months ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆465Updated last year
- a tool to help operate in EDRs' blind spots☆682Updated last month
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆430Updated 2 months ago
- ☆331Updated last year
- ↕️🤫 Stealth redirector for your red team operation security☆650Updated 5 months ago
- Loading Remote AES Encrypted PE in memory , Decrypted it and run it☆909Updated last year
- DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.☆484Updated 2 years ago
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆501Updated 5 months ago