Alternatives and similar repositories for Bypass_WindowsDefender

Users that are interested in Bypass_WindowsDefender are comparing it to the libraries listed below

• INotGreen / Invoke-SharpOffensive
  ☆15Updated last year
• wikiZ / CobaltStrike-Malleable-Profile
  CobaltStrike Malleable Profile
  ☆23Updated 3 years ago
• GamehunterKaan / Plog
  A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)
  ☆58Updated 3 years ago
• yanghaoi / LaunchSystemCmd
  在权限足够的情况下弹出system权限的cmd命令行，包含exe和dll两种文件类型，可用于一些可能存在本地提权漏洞的测试。
  ☆33Updated 3 years ago
• crisprss / net_memory_webshell
  用来存放平时写的一些net内存马，仅用于练手，需要可以自行修改
  ☆87Updated 3 years ago
• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆68Updated 2 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• M0nster3 / ITaskServers
  Bypass EDR Create TaskServers
  ☆37Updated 2 years ago
• AdminTest0 / Invoke-Obfuscation-Bypass
  Invoke-Obfuscation-Bypass + PS2EXE 过主流杀软
  ☆54Updated 3 years ago
• Rvn0xsy / Invoke-x64dbg-loaddll
  调用x64dbg中的loadll.exe白加黑示例代码
  ☆63Updated last year
• JDArmy / NO445-lateral-movement
  command execute without 445 port
  ☆52Updated 3 years ago
• Rvn0xsy / ZeroLogon
  CVE-2020-1472 C++
  ☆83Updated 2 years ago
• Rvn0xsy / GetWindowsCredentials
  通过WindowsAPI获取用户凭证，并保存到文件中
  ☆194Updated last year
• crisprss / PetitPotam
  替代PrintBug用于本地提权的新方式，主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …
  ☆149Updated 3 years ago
• txluck / xor-shellcode-and-ppid-spoofing
  异或shellcode和ppid欺骗免杀
  ☆14Updated 3 years ago
• XiaoliChan / CrackMapExec-Extension
  CrackMapExec extension module/protocol support
  ☆42Updated last year
• 1y0n / SharpRDPBatch
  批量检查远程桌面密码或ntlm是否正确
  ☆41Updated 4 years ago
• Haunted-Banshee / Shellcode-Hastur
  Shellcode Reductio Entropy Tools
  ☆71Updated last year
• Avienma / Mimikatz
  用c#实现了个远程拉取Mimikatz.ps1
  ☆61Updated last year
• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆77Updated 2 years ago
• bopin2020 / SharpCmd
  Re-implement cmd.exe using windows api
  ☆49Updated 2 years ago
• StarfireLab / BrowserPivot
  ☆31Updated last year
• yutianqaq / x1Ldr
  XOR 加密 分离免杀
  ☆67Updated last year
• JDArmy / PwdCollection
  密码收集
  ☆58Updated 3 years ago
• Z3ratu1 / HackBrowserDataManual
  Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring
  ☆62Updated 3 months ago
• 0neAtSec / SharpDomainInfo
  根据攻防以及域信息收集经验dump快而有用的域信息
  ☆104Updated last year
• M0nster3 / ExchangePE
  Asset scanning by dictionary stitching Domain to identify Exchange Servers versions
  ☆44Updated 2 years ago
• Ryze-T / EdrKiller
  ☆91Updated 4 years ago
• SurrealSky / byPassAVMake
  过木马免杀制作器
  ☆55Updated last year
• woaiqiukui / sam-the-admin-maq
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…
  ☆22Updated last year