SafeBreach-Labs / EDRaser
EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.
☆351Updated 11 months ago
Alternatives and similar repositories for EDRaser:
Users that are interested in EDRaser are comparing it to the libraries listed below
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆562Updated 8 months ago
- Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operation…☆174Updated 6 months ago
- ☆531Updated 11 months ago
- ☆284Updated last year
- Simulate the behavior of AV/EDR for malware development training.☆501Updated last year
- Tool to remotely dump secrets from the Windows registry☆434Updated 2 weeks ago
- Extract and execute a PE embedded within a PNG file using an LNK file.☆365Updated 4 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆342Updated 2 months ago
- An interactive shell to spoof some LOLBins command line☆184Updated last year
- ☆297Updated 3 months ago
- C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.☆372Updated last month
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆501Updated last week
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆250Updated 7 months ago
- Python implementation of GhostPack's Seatbelt situational awareness tool☆254Updated 4 months ago
- CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as A…☆287Updated last year
- ☆186Updated last year
- ☆274Updated last year
- ☆189Updated 5 months ago
- Kill AV/EDR leveraging BYOVD attack☆342Updated last year
- A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Paylo…☆147Updated last week
- Amsi Bypass payload that works on Windwos 11☆376Updated last year
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆510Updated 9 months ago
- KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).☆220Updated 7 months ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆279Updated 9 months ago
- AV/EDR Lab environment setup references to help in Malware development☆367Updated 3 weeks ago
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆350Updated last month
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆401Updated this week
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆570Updated 8 months ago
- yet another AV killer tool using BYOVD☆266Updated last year
- A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.☆143Updated 4 months ago