Alternatives and similar repositories for ActiveBreach-Engine

Users that are interested in ActiveBreach-Engine are comparing it to the libraries listed below

• UmaRex01 / Hit-And-Run
  A method to execute syscalls while bypassing EDR's function hooking and call stack analysis.
  ☆23Updated 6 months ago
• dk0m / ZeroCrumb
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆71Updated 5 months ago
• R41N3RZUF477 / QuickAssist_UAC_Bypass
  UAC Bypass using UIAccess program QuickAssist
  ☆126Updated 8 months ago
• rasta-mouse / Crystal-Kit
  Evasion kit for Cobalt Strike
  ☆260Updated last week
• Konis-Bros / espio
  Shellcode obfuscation tool to avoid AV/EDR.
  ☆130Updated 2 years ago
• ProcessusT / Venoma
  Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution
  ☆197Updated 5 months ago
• NtDallas / MemLoader
  Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible
  ☆246Updated 4 months ago
• hid3rx / PEPacker
  ☆100Updated 2 years ago
• Chainski / PandaLoader
  A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal builder.
  ☆74Updated last month
• tijme / cmstplua-uac-bypass
  Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
  ☆202Updated 3 years ago
• Cobalt-Strike / bof-vs
  A Beacon Object File (BOF) template for Visual Studio
  ☆249Updated 2 months ago
• wudun7 / obj2shellcode
  shellcode生成框架
  ☆88Updated last year
• evilashz / PigSyscall
  An implementation of an indirect system call
  ☆131Updated 2 years ago
• Vasco0x4 / ShadeLoader
  ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
  ☆40Updated 5 months ago
• WKL-Sec / LayeredSyscall
  Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …
  ☆286Updated last year
• bobby-tablez / VBScrambler
  A Python-based VBScript Code Obfuscator
  ☆41Updated 6 months ago
• Teach2Breach / moonwalk
  find dll base addresses without PEB WALK
  ☆149Updated 3 months ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆113Updated last year
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
  ☆275Updated 6 months ago
• CNMrSunshine / StarFly
  A C implementation for a stealth injection method
  ☆35Updated last week
• maxDcb / DreamWalkers
  Reflective shellcode loaderwith advanced call stack spoofing and .NET support.
  ☆219Updated last month
• j3h4ck / WatchDogKiller
  PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.
  ☆172Updated last month
• Hagrid29 / BYOVDKit
  bring your own vulnerable driver
  ☆111Updated 2 years ago
• killvxk / Rust-for-Malware-Development-Whitecat18
  This repository contains my complete resources and coding practices for malware development using Rust 🦀.
  ☆16Updated 9 months ago
• L4zyD0g / NimBeacon
  A Cobalt Strike beacon implemented in Nim.
  ☆24Updated 3 months ago
• iilegacyyii / DataInject-BOF
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆131Updated 6 months ago
• 0xJs / BYOVD_EDRKiller
  Proof of Concepts code for Bring Your Own Vulnerable Driver techniques
  ☆79Updated 2 months ago
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆145Updated 4 months ago
• Friends-Security / RedirectThread
  Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…
  ☆192Updated 4 months ago
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆57Updated last year