Alternatives and similar repositories for EventLogCrasher

Users that are interested in EventLogCrasher are comparing it to the libraries listed below

• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆188Updated 2 years ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆270Updated last year
• mandiant / msi-search
  ☆290Updated 2 years ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆212Updated last year
• cybersectroll / TrollAMSI
  ☆186Updated 7 months ago
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆139Updated last year
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆165Updated last year
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆319Updated 2 years ago
• deepinstinct / NoFilter
  ☆301Updated last year
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆149Updated last year
• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆211Updated last year
• hackerhouse-opensource / Artillery
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆182Updated 2 years ago
• ph4nt0mbyt3 / Darkside
  C# AV/EDR Killer using less-known driver (BYOVD)
  ☆183Updated 2 years ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 8 months ago
• nixpal / shellsilo
  SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…
  ☆153Updated 5 months ago
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆218Updated last year
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆167Updated last year
• SafeBreach-Labs / wd-pretender
  ☆133Updated 2 years ago
• sensepost / mydumbedr
  ☆120Updated 2 years ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆155Updated last year
• rasta-mouse / OST-C2-Spec
  Open Source C&C Specification
  ☆278Updated 11 months ago
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆202Updated 10 months ago
• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆208Updated last year
• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆253Updated last year
• rtecCyberSec / BitlockMove
  Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
  ☆432Updated 7 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆165Updated 6 months ago
• trustedsec / specula
  ☆229Updated 7 months ago
• WKL-Sec / GregsBestFriend
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆207Updated 2 years ago
• ZERODETECTION / MSC_Dropper
  ☆244Updated last year
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆300Updated 2 years ago