es3n1n / no-defender
A slightly more fun way to disable windows defender + firewall. (through the WSC api)
☆1,907Updated 10 months ago
Alternatives and similar repositories for no-defender:
Users that are interested in no-defender are comparing it to the libraries listed below
- Dump cookies and credentials directly from Chrome/Edge process memory☆1,172Updated 4 months ago
- Stop Windows Defender programmatically☆965Updated 2 years ago
- Tunnel TCP connections through a file☆924Updated this week
- A set of fully-undetectable process injection techniques abusing Windows Thread Pools☆1,088Updated last year
- A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities☆662Updated 5 months ago
- Complete list of LPE exploits for Windows (starting from 2023)☆775Updated last month
- poc for CVE-2024-38063 (RCE in tcpip.sys)☆661Updated 7 months ago
- HVNC for Cobalt Strike☆1,213Updated last year
- Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThrea…☆1,050Updated 10 months ago
- Shikata ga nai (仕方がない) encoder ported into go with several improvements☆1,681Updated last year
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,644Updated 5 months ago
- Converts PE into a shellcode☆2,522Updated last year
- Portable Executable reversing tool with a friendly GUI☆3,009Updated this week
- Syscall Shellcode Loader (Work in Progress)☆1,182Updated 11 months ago
- The swiss army knife of LSASS dumping☆1,918Updated 7 months ago
- A tool that shows detailed information about named pipes in Windows☆620Updated 5 months ago
- Tool to decrypt App-Bound encrypted keys in Chrome 127+, using the IElevator COM interface with path validation and encryption protection…☆363Updated this week
- Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.☆755Updated last year
- Because AV evasion should be easy.☆688Updated 4 months ago
- ☆1,632Updated 7 months ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆3,884Updated 6 months ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,175Updated last year
- Alternative Shellcode Execution Via Callbacks☆1,549Updated 2 years ago
- AV/EDR evasion via direct system calls.☆1,638Updated 2 years ago
- Spartacus DLL/COM Hijacking Toolkit☆1,037Updated last year
- AV/EDR Evasion Lab for Training & Learning Purposes☆1,235Updated last week
- A modern 32/64-bit position independent implant template☆1,192Updated last month
- CVE-2023-38831 winrar exploit generator☆788Updated last year
- Bootkit / Windows Login Password Bypass Tool☆480Updated last week
- kill anti-malware protected processes ( BYOVD) ( Microsoft Won)☆935Updated last year