Alternatives and similar repositories for GoodbyeEDR

Users that are interested in GoodbyeEDR are comparing it to the libraries listed below

• scareing / UAC_wenpon
  UAC_wenpon
  ☆49Updated 3 years ago
• wilszdev / SchtasksUacBypass
  bypass UAC even when configured to always notify user
  ☆30Updated 3 years ago
• timwhitez / Spoofing-Gate
  (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll
  ☆43Updated 3 years ago
• knightswd / ProcessGhosting
  ☆74Updated 3 years ago
• timwhitez / killProcessPOC
  use aswArPot.sys to kill process
  ☆68Updated 2 years ago
• hoo1ng / ImitateCobaltStrikeShellcode
  Imitate CobaltStrike's Shellcode Generation
  ☆3Updated 3 years ago
• Rvn0xsy / AsmShellcodeLoader
  汇编语言编写Shellcode加载器源代码 https://payloads.online/archivers/2022-02-16/1/
  ☆78Updated 2 years ago
• w1u0u1 / kt
  Kernel file/process/object tool
  ☆67Updated 3 years ago
• Jeffry38 / HiddenVNC
  A simple hidden vnc.
  ☆33Updated 4 years ago
• th3k3ymak3r / minbeacon
  A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.
  ☆19Updated 3 years ago
• sailay1996 / PrintNightmare-LPE
  CVE-2021-1675 (PrintNightmare)
  ☆76Updated 4 years ago
• NoOne-hub / bypass-BeaconEye
  bypass BeaconEye
  ☆88Updated 3 years ago
• Kara-4search / DInvoke_shellcodeload_CSharp
  ShellCodeLoader via DInvoke
  ☆58Updated 4 years ago
• timwhitez / Doge-RecycledGate
  Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;
  ☆32Updated 3 years ago
• WBGlIl / ReflectiveDLL_Patch
  ☆37Updated 5 years ago
• timwhitez / Doge-sRDI
  Shellcode implementation of Reflective DLL Injection by Golang. Convert DLLs to position independent shellcode
  ☆60Updated 4 years ago
• evilashz / CVE-2021-1675-LPE-EXP
  PrintNightmare , Local Privilege Escalation of CVE-2021-1675 or CVE-2021-34527
  ☆59Updated 4 years ago
• timwhitez / Doge-Whisper
  golang implementation of Syswhisper2/Syswhisper3
  ☆23Updated 3 years ago
• HadesW / power-kill
  power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
  ☆46Updated 3 years ago
• timwhitez / Doge-ScreenShot
  desktop screenshot
  ☆30Updated 2 years ago
• ch3rn0byl / HookedRDP
  ☆51Updated 5 years ago
• WBGlIl / Beacon_re
  ☆89Updated 3 years ago
• roadwy / SideloadFinder
  frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can …
  ☆52Updated 2 years ago
• timwhitez / Doge-Unhook
  DLL Unhooking
  ☆12Updated 4 years ago
• timwhitez / ReturnGate
  ReturnGate, just like HellsGate.
  ☆67Updated 2 years ago
• 0xballistics / inject2pe
  inject or convert shellcode to PE
  ☆40Updated 5 years ago
• dust-life / run_pe
  ☆49Updated 3 years ago
• crisprss / Extracted_WD_VDM
  Windows Defender VDM lua collections
  ☆47Updated 2 years ago
• ideaslocas / aDLL
  ☆73Updated 3 years ago
• timwhitez / Doge-AMSI-patch
  golang amsi bypass
  ☆30Updated 3 years ago