deepinstinct / NoFilterLinks
☆300Updated 11 months ago
Alternatives and similar repositories for NoFilter
Users that are interested in NoFilter are comparing it to the libraries listed below
Sorting:
- A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.☆317Updated 2 years ago
- .net config loader☆344Updated last year
- ☆287Updated 2 years ago
- Find potential DLL Sideloads on your windows computer☆213Updated 8 months ago
- ☆160Updated 3 months ago
- ☆212Updated 3 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆209Updated last year
- ☆382Updated 2 years ago
- ☆189Updated last year
- Tools for interacting with authentication packages using their individual message protocols☆339Updated last month
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆353Updated 3 months ago
- Collection of random RedTeam scripts.☆208Updated last year
- ☆310Updated 2 years ago
- Windows protocol library, including SMB and RPC implementations, among others.☆344Updated last week
- ☆222Updated last year
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆196Updated 2 years ago
- Generate an obfuscated DLL that will disable AMSI & ETW☆328Updated last year
- Open Source C&C Specification☆266Updated 7 months ago
- ☆182Updated 3 months ago
- DNS Tunneling using powershell to download and execute a payload. Works in CLM.☆228Updated 3 years ago
- Kill AV/EDR leveraging BYOVD attack☆374Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆362Updated last year
- ☆203Updated last year
- Python implementation of GhostPack's Seatbelt situational awareness tool☆265Updated 10 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆267Updated 3 months ago
- ☆152Updated 6 months ago
- ☆213Updated last year
- Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin pr…☆237Updated 2 years ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆313Updated last year
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆124Updated 2 years ago