Alternatives and similar repositories for no-defender:

Users that are interested in no-defender are comparing it to the libraries listed below

• Meckazin / ChromeKatz
  Dump cookies and credentials directly from Chrome/Edge process memory
  ☆1,116Updated 2 months ago
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,031Updated last year
• SafeBreach-Labs / WindowsDowndate
  A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
  ☆651Updated 3 months ago
• ynwarcs / CVE-2024-38063
  poc for CVE-2024-38063 (RCE in tcpip.sys)
  ☆649Updated 5 months ago
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD) ( Microsoft Won)
  ☆920Updated last year
• myzxcg / RealBlindingEDR
  Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…
  ☆994Updated 7 months ago
• PaulNorman01 / Forensia
  Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
  ☆750Updated last year
• MzHmO / Exploit-Street
  Complete list of LPE exploits for Windows (starting from 2023)
  ☆742Updated this week
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,412Updated 3 years ago
• hasherezade / exe_to_dll
  Converts a EXE into DLL
  ☆1,284Updated last year
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,107Updated 3 weeks ago
• hasherezade / pe_to_shellcode
  Converts PE into a shellcode
  ☆2,448Updated last year
• secretsquirrel / SigThief
  Stealing Signatures and Making One Invalid Signature at a Time
  ☆2,170Updated 3 years ago
• fiddyschmitt / File-Tunnel
  Tunnel TCP connections through a file
  ☆920Updated 3 weeks ago
• netero1010 / EDRSilencer
  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …
  ☆1,588Updated 3 months ago
• lab52io / StopDefender
  Stop Windows Defender programmatically
  ☆963Updated 2 years ago
• matterpreter / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆2,399Updated last year
• SaadAhla / FilelessPELoader
  Loading Remote AES Encrypted PE in memory , Decrypted it and run it
  ☆914Updated last year
• klezVirus / SysWhispers3
  SysWhispers on Steroids - AV/EDR evasion via direct system calls.
  ☆1,377Updated 6 months ago
• gatariee / gocheck
  Because AV evasion should be easy.
  ☆661Updated 2 months ago
• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,156Updated 9 months ago
• aahmad097 / AlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks
  ☆1,505Updated 2 years ago
• weak1337 / Alcatraz
  x64 binary obfuscator
  ☆1,764Updated last year
• jthuraisamy / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆1,839Updated 2 years ago
• TheWover / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆3,750Updated 3 months ago
• BeichenDream / GodPotato
  ☆1,884Updated last year
• vxunderground / VX-API
  Collection of various malicious functionality to aid in malware development
  ☆1,588Updated 11 months ago
• H1d3r / GPU_ShellCode
  ☆302Updated 2 years ago
• am0nsec / HellsGate
  Original C Implementation of the Hell's Gate VX Technique
  ☆1,006Updated 3 years ago
• Xacone / BestEdrOfTheMarket
  AV/EDR Evasion Lab for Training & Learning Purposes
  ☆1,145Updated this week