☆346Aug 20, 2025Updated 10 months ago
Alternatives and similar repositories for defcon33_silence_kill_edr
Users that are interested in defcon33_silence_kill_edr are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆55May 31, 2025Updated last year
- ☆52Jun 12, 2026Updated 3 weeks ago
- Lateral movement with DCOM DLL hijacking☆180Jul 4, 2025Updated last year
- Locate dlls and function addresses without PEB Walk and EAT parsing☆109Nov 7, 2025Updated 7 months ago
- ☆31Aug 13, 2025Updated 10 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ForsHops☆154Mar 25, 2025Updated last year
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆383Dec 13, 2024Updated last year
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆272Jun 18, 2025Updated last year
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆36Oct 31, 2023Updated 2 years ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆79Aug 25, 2025Updated 10 months ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆288Apr 6, 2025Updated last year
- The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.☆503Mar 15, 2026Updated 3 months ago
- Rust implementation, creating a scheduled task programmatically with user logon trigger.☆47Jun 10, 2025Updated last year
- Payload Generation Workflow☆41Jul 18, 2025Updated 11 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…☆366Mar 17, 2026Updated 3 months ago
- Stage 0☆170Dec 18, 2024Updated last year
- A hoontr must hoont☆106Nov 27, 2025Updated 7 months ago
- General Purpose OpSec Server☆114Mar 13, 2026Updated 3 months ago
- Local SYSTEM auth trigger for relaying☆172Jul 22, 2025Updated 11 months ago
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆86Jan 26, 2026Updated 5 months ago
- Nameless C2 - A C2 with all its components written in Rust☆285Sep 26, 2024Updated last year
- This is the tool to dump the LSASS process on modern Windows 11☆591May 23, 2026Updated last month
- ☆201Mar 28, 2025Updated last year
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Linker for Beacon Object Files☆189Jun 24, 2026Updated last week
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated last year
- remote process injections using pool party techniques☆70Jun 29, 2025Updated last year
- EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.☆855May 23, 2026Updated last month
- Random BOFs for LDAP tradecraft☆74Sep 9, 2025Updated 9 months ago
- BypassCredGuard CS BOF☆54Jan 23, 2025Updated last year
- Monitoring tool to detect patterns or IOCs (strings, regex, VirusTotal) and alert you and your team via console, Telegram or SMS written …☆18Feb 17, 2026Updated 4 months ago
- ☆336Sep 21, 2025Updated 9 months ago
- .NET tool used to enrich RPC telemetry☆102Jan 24, 2026Updated 5 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆208Dec 25, 2024Updated last year
- A BOF that runs unmanaged PEs inline☆702Oct 23, 2024Updated last year
- Hells Hollow Windows 11 Rootkit technique to Hook the SSDT via Alt Syscalls☆238Aug 31, 2025Updated 10 months ago
- ☆88May 15, 2025Updated last year
- A python script that automates a C2 Profile build☆48Dec 14, 2025Updated 6 months ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆62Feb 4, 2026Updated 5 months ago
- load shellcode without P/D Invoke and VirtualProtect call.☆173Sep 2, 2025Updated 10 months ago