Rostelecom-Red-Team/GoodbyeEDR external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Rostelecom-Red-Team/GoodbyeEDR

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Rostelecom-Red-Team/GoodbyeEDR)

Close

Rostelecom-Red-Team / GoodbyeEDRView on GitHubMore

• External links
• Readme badge

☆82Dec 24, 2021Updated 4 years ago

Alternatives and similar repositories for GoodbyeEDR

Users that are interested in GoodbyeEDR are comparing it to the libraries listed below

• Narumiii / phantommap

  View on GitHub
  Phantom DLL Hollowing method implemented in modmap
  ☆18Jun 9, 2021Updated 4 years ago
• RowTeam / SharpBoxUpload

  View on GitHub
  C# 编写的用于 Dropbox 文件上传
  ☆20Jan 16, 2022Updated 4 years ago
• An0nySec / UserAdd

  View on GitHub
  Bypass AV 用户添加
  ☆169Dec 30, 2021Updated 4 years ago
• scareing / UAC_wenpon

  View on GitHub
  UAC_wenpon
  ☆49Nov 25, 2021Updated 4 years ago
• wilszdev / SchtasksUacBypass

  View on GitHub
  bypass UAC even when configured to always notify user
  ☆29Aug 31, 2021Updated 4 years ago
• smallzhong / hide_execute_memory

  View on GitHub
  隐藏可执行内存
  ☆267Apr 27, 2025Updated 10 months ago
• knightswd / ProcessGhosting

  View on GitHub
  ☆74Jul 23, 2021Updated 4 years ago
• RedSection / printjacker

  View on GitHub
  Hijack Printconfig.dll to execute shellcode
  ☆101Jan 15, 2021Updated 5 years ago
• NoOne-hub / bypass-BeaconEye

  View on GitHub
  bypass BeaconEye
  ☆89Sep 9, 2021Updated 4 years ago
• zer0yu / CVE-2021-43798

  View on GitHub
  Grafana Arbitrary File Reading Vulnerability
  ☆27Dec 7, 2021Updated 4 years ago
• Rvn0xsy / impacket-suite

  View on GitHub
  Post-exploitation script developed using impacket
  ☆21Mar 15, 2022Updated 4 years ago
• Hagrid29 / DumpAADSyncCreds

  View on GitHub
  C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…
  ☆46Jun 24, 2023Updated 2 years ago
• wonderkun / go-packer

  View on GitHub
  golang打包二进制进行免杀
  ☆234Apr 7, 2021Updated 4 years ago
• Ridter / proxyshell_payload

  View on GitHub
  proxyshell payload generate
  ☆75Aug 14, 2021Updated 4 years ago
• mrd0x / dll_inject_vs_binaries

  View on GitHub
  LOLBINs that inject a DLL into a given process ID.
  ☆139Nov 21, 2021Updated 4 years ago
• scareing / cmd2shellcode

  View on GitHub
  cmd2shellcode
  ☆79May 6, 2021Updated 4 years ago
• bufsnake / blueming

  View on GitHub
  备份文件扫描，并自动进行下载
  ☆130Jul 26, 2023Updated 2 years ago
• FunnyWolf / TFirewall

  View on GitHub
  防火墙出网探测工具,内网穿透型socks5代理
  ☆269Nov 12, 2021Updated 4 years ago
• BronzeTicket / ClipboardWindow-Inject

  View on GitHub
  CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
  ☆68Sep 15, 2022Updated 3 years ago
• timwhitez / gobusterdns

  View on GitHub
  lite version of gobuster. Only subdomain brute. 内网轻量化子域名爆破工具
  ☆44Jun 25, 2021Updated 4 years ago
• therealdreg / pdbdump_bochs

  View on GitHub
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆14Aug 11, 2023Updated 2 years ago
• timwhitez / Cobalt-Strike-det

  View on GitHub
  Cobalt Strike teamserver detection.
  ☆16Apr 26, 2021Updated 4 years ago
• Ridter / GetMail

  View on GitHub
  利用NTLM Hash读取Exchange邮件
  ☆58May 13, 2023Updated 2 years ago
• An0nySec / ShadowUser

  View on GitHub
  影子用户 克隆
  ☆233Dec 30, 2021Updated 4 years ago
• timwhitez / Doge-Defense-Evasion-Ref

  View on GitHub
  Defense Evasion & Bypass AntiVirus reference
  ☆74Mar 28, 2021Updated 4 years ago
• akkuman / gSigFlip

  View on GitHub
  A SigFlip implement in golang
  ☆51Jan 5, 2022Updated 4 years ago
• uknowsec / CreateService

  View on GitHub
  创建服务持久化
  ☆108Apr 26, 2021Updated 4 years ago
• alfarom256 / StinkyLoader

  View on GitHub
  It stinks
  ☆103Apr 22, 2022Updated 3 years ago
• iammaguire / MeetC2

  View on GitHub
  Modular C2 framework aiming to ease post exploitation for red teamers.
  ☆194May 22, 2022Updated 3 years ago
• Phuong39 / Ortau

  View on GitHub
  一个用于隐藏C2的、开箱即用的反向代理服务器。 旨在省去繁琐的配置Nginx服务的过程。
  ☆45Dec 18, 2021Updated 4 years ago
• CryptoBreach / UnhookPoC

  View on GitHub
  A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.
  ☆10Dec 16, 2021Updated 4 years ago
• timwhitez / Freeze-Common

  View on GitHub
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆14Sep 30, 2022Updated 3 years ago
• GetRektBoy724 / SharpLoadLibrary

  View on GitHub
  An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.
  ☆55Mar 3, 2022Updated 4 years ago
• NextronSystems / go-handle

  View on GitHub
  Iterate over Windows Handles
  ☆15Nov 18, 2025Updated 4 months ago
• A-D-Team / SharpMemshell

  View on GitHub
  Memshell
  ☆294Dec 7, 2021Updated 4 years ago
• timwhitez / Doge-Persistence-Platform

  View on GitHub
  后渗透持久化控制平台; Windows Persistence Platform;
  ☆46Sep 16, 2021Updated 4 years ago
• c1y2m3 / Tailorbox

  View on GitHub
  redteam Build platform
  ☆19Nov 13, 2023Updated 2 years ago
• capt-meelo / NtCreateUserProcess

  View on GitHub
  Minimal PoC developed as discuss in https://captmeelo.com/redteam/maldev/2022/05/10/ntcreateuserprocess.html
  ☆144May 10, 2022Updated 3 years ago
• aaaddress1 / knownDlls_Poison

  View on GitHub
  ☆26Dec 29, 2021Updated 4 years ago