Alternatives and similar repositories for anti_defender

Users that are interested in anti_defender are comparing it to the libraries listed below

• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆100Updated 5 months ago
• patrickt2017 / VEHNetLoader
  Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies
  ☆49Updated 4 months ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆74Updated last year
• xelemental / Mal-LNK-Generator
  ☆38Updated 8 months ago
• bot984397 / eepy
  ☆38Updated 7 months ago
• pulpocaminante / gui-pwn
  GUI-based UAC bypass
  ☆30Updated 10 months ago
• nbaertsch / Shrike
  Hunting and injecting RWX 'mockingjay' DLLs in pure nim
  ☆59Updated 11 months ago
• OtterHacker / Hooker
  ☆108Updated last year
• kapellos / LNKSmuggler
  A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
  ☆89Updated 10 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• HulkOperator / AuthStager
  ☆59Updated last year
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆55Updated 2 years ago
• yo-yo-yo-jbo / commandline_spoofing
  Commandline spoofing on Windows
  ☆49Updated this week
• Slowerzs / CryptDecryptMemory
  ☆31Updated 11 months ago
• olafhartong / ETWLocksmith
  A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…
  ☆62Updated 4 months ago
• Bl4ckM1rror / PEAs
  ☆60Updated last year
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆54Updated 6 months ago
• OffenseTeacher / Steganim
  ☆47Updated 2 years ago
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆98Updated last year
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆72Updated 9 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆101Updated 8 months ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆51Updated last year
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆26Updated 7 months ago
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆32Updated last year
• Teach2Breach / schtask
  Rust implementation, creating a scheduled task programmatically with user logon trigger.
  ☆47Updated 5 months ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 2 years ago
• casp3r0x0 / CortexRansomBypass
  Cortex EDR Ransomware protection Bypass
  ☆25Updated 9 months ago
• Workday / raw-disk-parser
  A tool to interact with Windows drivers to perform a raw disk read and parse out target files without calling standard Windows file APIs
  ☆98Updated 2 months ago
• leftp / FirewallMoniker
  A C# implementation that disables Windows Firewall bypassing UAC
  ☆16Updated last year
• nbaertsch / PoolProxy
  Proxy function calls through the thread pool with ease
  ☆30Updated 9 months ago