TwoSevenOneT / EDR-RedirLinks
EDR-Redir : a tool used to redirect the EDR's folder to another location.
☆214Updated 2 months ago
Alternatives and similar repositories for EDR-Redir
Users that are interested in EDR-Redir are comparing it to the libraries listed below
Sorting:
- Shellcode injection using the Windows Debugging API☆124Updated this week
- ☆159Updated last year
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆196Updated 11 months ago
- template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.☆97Updated last month
- A small How-To on creating your own weaponized WSL file☆119Updated 5 months ago
- Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.☆249Updated this week
- Lateral movement with DCOM DLL hijacking☆174Updated 6 months ago
- Evasive Payload Delivery Server & C2 Redirector☆112Updated 2 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆214Updated last year
- A Mythic agent for Windows written in C☆148Updated this week
- A BOF to enumerate system process, their protection levels, and more.☆123Updated last year
- Stage 0☆168Updated last year
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆194Updated last year
- Adversary Emulation Framework☆128Updated 6 months ago
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆102Updated 2 weeks ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆164Updated 5 months ago
- AppLocker-Based EDR Neutralization☆238Updated 2 weeks ago
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functions☆263Updated 9 months ago
- ☆125Updated 3 weeks ago
- Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective☆162Updated last month
- Local SYSTEM auth trigger for relaying☆168Updated 5 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆139Updated last year
- BOF with Synthetic Stackframe☆204Updated 2 months ago
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.☆181Updated 2 weeks ago
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆90Updated 8 months ago
- Agent for AdaptixC2 with focus in evasion, capability and malleable.☆120Updated 2 weeks ago
- Remote DLL Injection with Timer-based Shellcode Execution☆153Updated 5 months ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆182Updated 9 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆127Updated last year
- Robust Cobalt Strike shellcode loader with multiple advanced evasion features☆198Updated 8 months ago