SafeBreach-Labs / EDRaser
EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.
☆353Updated 11 months ago
Alternatives and similar repositories for EDRaser:
Users that are interested in EDRaser are comparing it to the libraries listed below
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆343Updated 2 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆566Updated 8 months ago
- Simulate the behavior of AV/EDR for malware development training.☆514Updated last year
- ☆531Updated 11 months ago
- Kill AV/EDR leveraging BYOVD attack☆344Updated last year
- Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operation…☆178Updated 6 months ago
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆350Updated last month
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆508Updated 7 months ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆576Updated 9 months ago
- Nameless C2 - A C2 with all its components written in Rust☆263Updated 5 months ago
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆532Updated 4 months ago
- Tool to remotely dump secrets from the Windows registry☆435Updated last month
- ☆304Updated 3 months ago
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆367Updated last month
- An interactive shell to spoof some LOLBins command line☆184Updated last year
- A suite of tools to disrupt campaigns using the Sliver C2 framework.☆269Updated last year
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆283Updated 10 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆405Updated last week
- KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).☆220Updated 7 months ago
- Slides and Codes used for the workshop Red Team Infrastructure Automation☆180Updated 11 months ago
- An ADCS honeypot to catch attackers in your internal network.☆284Updated 8 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆287Updated 4 months ago
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆250Updated 7 months ago
- Amsi Bypass payload that works on Windwos 11☆376Updated last year
- ☆285Updated last week
- Extract and execute a PE embedded within a PNG file using an LNK file.☆378Updated 4 months ago
- Contains a collection of Bash scripts designed for comprehensive security audits and network mapping of Active Directory (AD) environment…☆137Updated 10 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆170Updated last month
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆509Updated 3 weeks ago
- yet another AV killer tool using BYOVD☆268Updated last year