Alternatives and similar repositories for anti_defender

Users that are interested in anti_defender are comparing it to the libraries listed below

• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆99Updated 4 months ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• bot984397 / eepy
  ☆38Updated 6 months ago
• kapellos / LNKSmuggler
  A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
  ☆87Updated 9 months ago
• patrickt2017 / VEHNetLoader
  Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies
  ☆47Updated 3 months ago
• OtterHacker / Hooker
  ☆108Updated 11 months ago
• nbaertsch / Shrike
  Hunting and injecting RWX 'mockingjay' DLLs in pure nim
  ☆59Updated 10 months ago
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆98Updated last year
• silentwarble / Hannibal
  Mythic C2 Agent written in x64 PIC C
  ☆83Updated 8 months ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆23Updated 5 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆101Updated 6 months ago
• pulpocaminante / gui-pwn
  GUI-based UAC bypass
  ☆28Updated 8 months ago
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆32Updated last year
• nbaertsch / PoolProxy
  Proxy function calls through the thread pool with ease
  ☆30Updated 7 months ago
• D4rthMaulCop / DumpKernel-S1
  A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80
  ☆20Updated 6 months ago
• xelemental / Mal-LNK-Generator
  ☆37Updated 6 months ago
• fern89 / runpe-x64
  RunPE adapted for x64 and written in C, does not use RWX
  ☆28Updated last year
• HulkOperator / AuthStager
  ☆58Updated 11 months ago
• casp3r0x0 / CortexRansomBypass
  Cortex EDR Ransomware protection Bypass
  ☆25Updated 8 months ago
• Offensive-Panda / C2_Elevated_Shell_DLL_Hijcking
  DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…
  ☆44Updated last year
• zero2504 / FrostLock-Injection
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆30Updated 6 months ago
• mez-0 / citadel
  A Payload Analysis Framework
  ☆108Updated last week
• eversinc33 / UnXorStringsNet
  Deobfuscation of XorStringsNet
  ☆14Updated 11 months ago
• GoSecure / prompt
  AI-based implant feature
  ☆25Updated 5 months ago
• C5Hackr / ARM64_AmsiPatch
  ☆20Updated 5 months ago
• theart42 / Sharpcat
  A port of classic netcat to C#
  ☆32Updated 2 years ago
• EvilBytecode / EByte-Ransomware
  Go ransomware leveraging ChaCha20 and ECIES encryption with a web-based control panel.
  ☆41Updated 5 months ago
• pulpocaminante / PPL-0day
  Demoting PPL anti-malware services to less than a guest user
  ☆62Updated 8 months ago
• tehstoni / RustyKeys
  UAC Bypass using CMSTP in Rust
  ☆33Updated 10 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year