TwoSevenOneT / EDRStartupHinderLinks
EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.
☆172Updated 3 weeks ago
Alternatives and similar repositories for EDRStartupHinder
Users that are interested in EDRStartupHinder are comparing it to the libraries listed below
Sorting:
- Fairy Law - Compromise or disable EDR security solutions☆65Updated 2 months ago
- Modern PIC implant for Windows (64 & 32 bit)☆105Updated 6 months ago
- Using Chromium-based browsers as a proxy for C2 traffic.☆140Updated last month
- EDR-Redir : a tool used to redirect the EDR's folder to another location.☆222Updated 2 months ago
- .NET tool used to enrich RPC telemetry☆101Updated last week
- Remote DLL Injection with Timer-based Shellcode Execution☆152Updated 6 months ago
- PoC for generating bthprops.cpl module designed to be loaded by Fsquirt.exe LOLBin☆121Updated last month
- Convert your shellcode into an ASCII string☆125Updated 7 months ago
- ZoomBotC2 is a stealthy Command and Control (C2) framework that leverages Zoom's API endpoints for covert communication between implants …☆57Updated 7 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆102Updated 10 months ago
- A small How-To on creating your own weaponized WSL file☆119Updated 6 months ago
- Enumerate active EDR's on the system☆150Updated 4 months ago
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…☆62Updated 8 months ago
- A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass☆164Updated 4 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆83Updated last year
- Utilizng an MCP Server to communicate with your C2☆86Updated 8 months ago
- Shellcode injection using the Windows Debugging API☆164Updated last month
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆84Updated 9 months ago
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆90Updated 9 months ago
- A Mythic agent for Windows written in C☆153Updated this week
- Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…☆154Updated 2 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆54Updated 8 months ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆54Updated 8 months ago
- Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…☆119Updated last month
- ☆145Updated 2 months ago
- A BOF to enumerate system process, their protection levels, and more.☆124Updated last year
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆135Updated 9 months ago
- sideloading PoC using onedrive.exe & version.dll☆90Updated 3 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆61Updated 8 months ago
- Impersonate Tokens using only NTAPI functions☆83Updated 10 months ago