amjcyber/EDRNoiseMaker external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

amjcyber/EDRNoiseMaker

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/amjcyber/EDRNoiseMaker)

Close

amjcyber / EDRNoiseMakerView on GitHubMore

• External links
• Readme badge

Detect WFP filters blocking EDR communications

☆96Jan 5, 2024Updated 2 years ago

Alternatives and similar repositories for EDRNoiseMaker

Users that are interested in EDRNoiseMaker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• netero1010 / EDRSilencer

  View on GitHub
  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …
  ☆1,831Nov 3, 2024Updated last year
• senzee1984 / EDRPrison

  View on GitHub
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆462Aug 2, 2024Updated last year
• dmcxblue / SharpGhostTask

  View on GitHub
  A C# port from Invoke-GhostTask
  ☆120Jan 5, 2024Updated 2 years ago
• rad9800 / FileRenameJunctionsEDRDisable

  View on GitHub
  ☆158Dec 13, 2024Updated last year
• susMdT / clr-thing

  View on GitHub
  rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.
  ☆17Jan 6, 2024Updated 2 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• vxCrypt0r / AMSI_VEH

  View on GitHub
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆169May 30, 2024Updated last year
• CICADA8-Research / TypeLibWalker

  View on GitHub
  TypeLib persistence technique
  ☆141Oct 22, 2024Updated last year
• Cipher7 / ApexLdr

  View on GitHub
  ApexLdr is a DLL Payload Loader written in C
  ☆117Jul 17, 2024Updated last year
• decoder-it / DFSCoerce-exe-2

  View on GitHub
  DFSCoerce exe revisited version with custom authentication
  ☆42Jan 13, 2024Updated 2 years ago
• lap1nou / CLR_Heap_encryption

  View on GitHub
  ☆101Oct 7, 2023Updated 2 years ago
• zimnyaa / smbsocks

  View on GitHub
  A simple rpc2socks alternative in pure Go.
  ☆31Jul 8, 2024Updated last year
• parzel / GoBofRunner

  View on GitHub
  A BOF/COFF loader implemented in Go and CGO.
  ☆23Jan 16, 2024Updated 2 years ago
• deh00ni / NtDumpBOF

  View on GitHub
  ☆100Sep 1, 2024Updated last year
• rbmm / RtlClone

  View on GitHub
  ☆42Feb 18, 2025Updated last year
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• deepinstinct / NoFilter

  View on GitHub
  ☆302Oct 29, 2024Updated last year
• Teach2Breach / noldr

  View on GitHub
  Dynamically resolve API function addresses at runtime in a secure manner.
  ☆73Nov 11, 2025Updated 4 months ago
• mlcsec / SigFinder

  View on GitHub
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Feb 6, 2024Updated 2 years ago
• NtDallas / KrakenMask

  View on GitHub
  Sleep obfuscation
  ☆272Dec 13, 2024Updated last year
• itaymigdal / LOLSpoof

  View on GitHub
  An interactive shell to spoof some LOLBins command line
  ☆188Jan 27, 2024Updated 2 years ago
• vin01 / poc-proxycommand-vulnerable-v2

  View on GitHub
  Proof of conept to exploit vulnerable proxycommand configurations on ssh clients
  ☆19Dec 21, 2023Updated 2 years ago
• 0xEr3bus / PoolPartyBof

  View on GitHub
  A beacon object file implementation of PoolParty Process Injection Technique.
  ☆439Dec 21, 2023Updated 2 years ago
• MzHmO / SymProcAddress

  View on GitHub
  Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
  ☆145Mar 16, 2024Updated 2 years ago
• jdu2600 / Etw-SyscallMonitor

  View on GitHub
  Monitors ETW for security relevant syscalls maintaining the set called by each unique process
  ☆89May 17, 2023Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• oldboy21 / SWAPPALA

  View on GitHub
  In-memory hiding technique
  ☆63Jan 5, 2025Updated last year
• iamagarre / BadExclusionsNWBO

  View on GitHub
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆76Feb 9, 2024Updated 2 years ago
• rasta-mouse / CsWhispers

  View on GitHub
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆190Mar 4, 2024Updated 2 years ago
• Diverto / IPPrintC2

  View on GitHub
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆150May 3, 2024Updated last year
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year
• FuzzySecurity / Magikarp

  View on GitHub
  ECC Public Key Cryptography
  ☆37Oct 29, 2023Updated 2 years ago
• deepinstinct / ShimMe

  View on GitHub
  ☆147Oct 29, 2024Updated last year
• klezVirus / koppeling-p

  View on GitHub
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆79Aug 5, 2024Updated last year
• joe-desimone / patriot

  View on GitHub
  ☆156Jul 31, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• cybersectroll / SharpPersistSD

  View on GitHub
  ☆91May 15, 2024Updated last year
• 0xdea / blindsight

  View on GitHub
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆247Mar 9, 2026Updated 2 weeks ago
• 0xTriboulet / Cycotic

  View on GitHub
  A python polymorphic engine for C programs
  ☆11Dec 8, 2023Updated 2 years ago
• frkngksl / UnlinkDLL

  View on GitHub
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆60Dec 15, 2023Updated 2 years ago
• AlteredSecurity / Disable-TamperProtection

  View on GitHub
  A POC to disable TamperProtection and other Defender / MDE components
  ☆256Jun 6, 2024Updated last year
• d419h / IconJector

  View on GitHub
  Inject DLLs into the explorer process using icons
  ☆407May 18, 2025Updated 10 months ago
• magisterquis / bin2memfd

  View on GitHub
  Loads a program into a memfd and runs it.
  ☆11May 22, 2022Updated 3 years ago