Alternatives and similar repositories for Forensia

Users that are interested in Forensia are comparing it to the libraries listed below

• 0xHossam / Killer
  Killer is a super simple tool designed to bypass AV/EDR security tools using various evasive techniques.
  ☆832Updated last year
• Xacone / BestEdrOfTheMarket
  EDR Lab for Experimentation Purposes
  ☆1,387Updated last month
• JoelGMSec / PSRansom
  PowerShell Ransomware Simulator with C2 Server
  ☆494Updated last year
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,198Updated 2 years ago
• assume-breach / Home-Grown-Red-Team
  ☆714Updated last year
• Idov31 / Sandman
  Sandman is a NTP based backdoor for hardened networks.
  ☆812Updated last year
• ZeroMemoryEx / Terminator
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆1,035Updated 2 years ago
• Helixo32 / CrimsonEDR
  Simulate the behavior of AV/EDR for malware development training.
  ☆551Updated last year
• BC-SECURITY / Moriarty
  Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…
  ☆511Updated last year
• naksyn / Pyramid
  a tool to help operate in EDRs' blind spots
  ☆769Updated last year
• VirtualAlllocEx / DEFCON-31-Syscalls-Workshop
  Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
  ☆732Updated 6 months ago
• netero1010 / EDRSilencer
  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …
  ☆1,788Updated last year
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD ) ( Microsoft Won )
  ☆968Updated 2 years ago
• r4wd3r / Suborner
  ☆472Updated last year
• looCiprian / GC2-sheet
  GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsof…
  ☆631Updated 8 months ago
• Cobalt-Strike / community_kit
  Cobalt Strike is a post-exploitation framework designed to be extended and customized by the user community. Several excellent tools and …
  ☆391Updated this week
• nickvourd / Supernova
  Real fucking shellcode encryptor & obfuscator tool
  ☆977Updated last month
• persistence-info / persistence-info.github.io
  ☆514Updated last year
• FourCoreLabs / EDRHunt
  Scan installed EDRs and AVs on Windows
  ☆603Updated this week
• wsummerhill / C2_RedTeam_CheatSheets
  Useful C2 techniques and cheat sheets learned from engagements
  ☆564Updated 3 months ago
• optiv / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆723Updated 2 years ago
• Sh3lldon / FullBypass
  A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…
  ☆809Updated 8 months ago
• helviojunior / hookchain
  HookChain: A new perspective for Bypassing EDR Solutions
  ☆576Updated 11 months ago
• arttoolkit / arttoolkit.github.io
  A RedTeam Toolkit
  ☆408Updated 4 months ago
• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,339Updated 2 years ago
• redeye-framework / Redeye
  Redeye is a tool intended to help you manage your data during a pentest operation
  ☆472Updated last year
• ZeroMemoryEx / C2-Hunter
  Extract C2 Traffic
  ☆252Updated last year
• BushidoUK / Russian-APT-Tool-Matrix
  A tool matrix for Russian APTs based on the Ransomware Tool Matrix
  ☆224Updated 3 months ago
• x0xr00t / Automated-MUlti-UAC-Bypass
  Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022
  ☆452Updated last year
• umutcamliyurt / PingRAT
  PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.
  ☆438Updated 2 years ago