PaulNorman01 / ForensiaLinks
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
☆778Updated 2 years ago
Alternatives and similar repositories for Forensia
Users that are interested in Forensia are comparing it to the libraries listed below
Sorting:
- Killer is a super simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆830Updated last year
- Sandman is a NTP based backdoor for hardened networks.☆807Updated last year
- PowerShell Ransomware Simulator with C2 Server☆489Updated last year
- ☆714Updated last year
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,191Updated last year
- EDR Lab for Experimentation Purposes☆1,354Updated 2 months ago
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆1,022Updated 2 years ago
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆511Updated last year
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆805Updated 6 months ago
- Cobalt Strike is a post-exploitation framework designed to be extended and customized by the user community. Several excellent tools and …☆384Updated this week
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,760Updated 11 months ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆705Updated 4 months ago
- a tool to help operate in EDRs' blind spots☆761Updated 10 months ago
- kill anti-malware protected processes ( BYOVD ) ( Microsoft Won )☆967Updated 2 years ago
- Real fucking shellcode encryptor & obfuscator tool☆941Updated last month
- Simulate the behavior of AV/EDR for malware development training.☆540Updated last year
- Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022☆450Updated 11 months ago
- HookChain: A new perspective for Bypassing EDR Solutions☆566Updated 9 months ago
- GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsof…☆625Updated 6 months ago
- A light-weight first-stage C2 implant written in Nim (and Rust).☆914Updated 6 months ago
- A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Inte…☆1,162Updated last month
- Extract C2 Traffic☆251Updated 10 months ago
- ☆470Updated 10 months ago
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,296Updated last year
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆609Updated last year
- A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities☆681Updated 11 months ago
- Useful C2 techniques and cheat sheets learned from engagements☆549Updated last month
- A centralized and enhanced memory analysis platform☆496Updated 2 months ago
- Redeye is a tool intended to help you manage your data during a pentest operation☆469Updated last year
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,022Updated last year