Ryze-T/EdrKiller

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Ryze-T/EdrKiller)

Ryze-T / EdrKiller

☆91

Alternatives and similar repositories for EdrKiller

Users that are interested in EdrKiller are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

Ryze-T / cdb-wds
View on GitHub
利用白名单文件 cdb.exe 执行 shellcode
☆214Jun 29, 2022Updated 3 years ago
BeneficialCode / KPPL
View on GitHub
Kill Protected Process Light Process (include av)
☆57Sep 15, 2023Updated 2 years ago
SummerSec / AgentInjectTool
View on GitHub
改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能
☆280Nov 28, 2023Updated 2 years ago
idiotc4t / sharpwmi
View on GitHub
(批量化改造)sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
☆109Jan 8, 2021Updated 5 years ago
crisprss / PetitPotam
View on GitHub
替代PrintBug用于本地提权的新方式，主要利用MS-EFSR协议中的接口函数借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …
☆150Mar 13, 2022Updated 4 years ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
GetRektBoy724 / SharpLoadLibrary
View on GitHub
An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.
☆55Mar 3, 2022Updated 4 years ago
crisprss / BypassUserAdd
View on GitHub
通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
☆343Apr 10, 2022Updated 4 years ago
Rvn0xsy / SchtaskCreator
View on GitHub
远程创建任务计划工具
☆190Apr 23, 2022Updated 4 years ago
HadesW / power-kill
View on GitHub
power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
☆48Sep 27, 2021Updated 4 years ago
Ryze-T / Windows_API_Tools
View on GitHub
使用WindowsAPI写的一些渗透小工具
☆101Jun 17, 2021Updated 4 years ago
Ridter / SharpAddDomainMachine
View on GitHub
SharpAddDomainMachine
☆69Oct 12, 2021Updated 4 years ago
Yihsiwei / GetOut360
View on GitHub
强制关闭360 需要管理员权限
☆171Feb 6, 2022Updated 4 years ago
M0nster3 / RpcsDemo
View on GitHub
关于RPC一些绕EDR的tips
☆200Mar 3, 2023Updated 3 years ago
arsium / ShellCodeExec
View on GitHub
My personal shellcode loader
☆31Mar 9, 2023Updated 3 years ago
GPUs on demand by Runpod - Special Offer Available • Ad
Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
Rvn0xsy / gsocks5
View on GitHub
golang for socks5
☆33Jun 21, 2021Updated 4 years ago
alfarom256 / StinkyLoader
View on GitHub
It stinks
☆103Apr 22, 2022Updated 4 years ago
Rvn0xsy / j2osWin
View on GitHub
☆156Jun 18, 2024Updated last year
Rostelecom-Red-Team / GoodbyeEDR
View on GitHub
☆82Dec 24, 2021Updated 4 years ago
Jeffry38 / HiddenVNC
View on GitHub
A simple hidden vnc.
☆34Feb 19, 2021Updated 5 years ago
GamehunterKaan / Plog
View on GitHub
A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)
☆60Feb 20, 2022Updated 4 years ago
0x727 / CloneX_0x727
View on GitHub
进行克隆用户、添加用户等账户防护安全检测的轻巧工具
☆185Sep 3, 2021Updated 4 years ago
Octoberfest7 / EventViewerUAC_BOF
View on GitHub
Beacon Object File implementation of Event Viewer deserialization UAC bypass
☆133May 6, 2022Updated 4 years ago
wonderkun / go-packer
View on GitHub
golang打包二进制进行免杀
☆234Apr 7, 2021Updated 5 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
BeichenDream / CVE-2022-26134-Godzilla-MEMSHELL
View on GitHub
☆342Jun 7, 2022Updated 3 years ago
johnjohnsp1 / reflectivepotato
View on GitHub
MSFRottenPotato built as a Reflective DLL. Work in progress. Gotta love Visual C++
☆31Oct 25, 2018Updated 7 years ago
HKirito / GoogleAuth
View on GitHub
CobaltStrike and Google Auth twice
☆63Oct 11, 2021Updated 4 years ago
ASkyeye / MSBuild-AL-Bypass
View on GitHub
C# shellcode runner adapted to run from a csproj to be triggered by MSBuild
☆27Feb 11, 2022Updated 4 years ago
sliverarmory / injectAmsiBypass
View on GitHub
Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
☆49Dec 31, 2021Updated 4 years ago
Ryze-T / rust-addUser
View on GitHub
windows 添加管理员--Rust版本
☆45Jul 7, 2022Updated 3 years ago
Ryze-T / CNVD-2022-10270-LPE
View on GitHub
基于向日葵RCE的本地权限提升，无需指定端口
☆211Feb 24, 2022Updated 4 years ago
An0nySec / UserAdd
View on GitHub
Bypass AV 用户添加
☆169Dec 30, 2021Updated 4 years ago
ChaitanyaHaritash / Callback_Shellcode_Injection
View on GitHub
POCs for Shellcode Injection via Callbacks
☆415Feb 23, 2021Updated 5 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
editso / gungnir
View on GitHub
一款操作互不干扰的远程桌面工具
☆72Feb 4, 2023Updated 3 years ago
smallzhong / hide_execute_memory
View on GitHub
隐藏可执行内存
☆267Apr 27, 2025Updated last year
0x727 / SchTask_0x727
View on GitHub
创建隐藏计划任务，权限维持，Bypass AV
☆562Sep 1, 2021Updated 4 years ago
mai1zhi2 / SharpBeacon
View on GitHub
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
☆729Sep 1, 2021Updated 4 years ago
NyDubh3 / AnonymousSMBServer
View on GitHub
一个能快速开启和关闭匿名SMB共享的红队脚本
☆174Apr 6, 2022Updated 4 years ago
HadarShahar / process-hiders
View on GitHub
Hides processes from the windows task manager using IAT hooking.
☆22Mar 30, 2021Updated 5 years ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,472Apr 25, 2024Updated 2 years ago