Alternatives and similar repositories for av-edr-urls

Users that are interested in av-edr-urls are comparing it to the libraries listed below

• Karkas66 / EarlyCascadeImprooved

  View on GitHub
  an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code
  ☆22Feb 20, 2025Updated 11 months ago
• SilvestriF3 / Passworld

  View on GitHub
  Passworld is a fully customizable wordlist generator
  ☆16Sep 13, 2024Updated last year
• CultCornholio / solenya

  View on GitHub
  Microsoft365 Device Code Phishing Framework
  ☆39Sep 4, 2021Updated 4 years ago
• MrTuxx / aad-sso-enum-brute-spray

  View on GitHub
  Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…
  ☆14Feb 23, 2022Updated 3 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack

  View on GitHub
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14May 28, 2025Updated 8 months ago
• buldansec / EnableEFS

  View on GitHub
  Enable EFS service as low priv user (PE & BOF)
  ☆21Jul 6, 2025Updated 7 months ago
• ProDefense / Hawk

  View on GitHub
  Golang tool designed to exfiltrate passwords found via the sshd and su services
  ☆26Nov 23, 2025Updated 2 months ago
• xyplex3 / RedTeamCoin

  View on GitHub
  Red Team Coin for crypto-mining operations.
  ☆23Jan 12, 2026Updated last month
• secgroundzero / hashslack

  View on GitHub
  Small utility script to notify via Slack about Hashcat's progress during a password cracking session
  ☆10Mar 10, 2019Updated 6 years ago
• EvilBytecode / Lifetime-AmsiBypass

  View on GitHub
  Lifetime AMSI bypass.
  ☆36Apr 21, 2025Updated 9 months ago
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆135Apr 18, 2025Updated 9 months ago
• blurbdust / rainbowcrackalack

  View on GitHub
  Rainbow table generation & lookup tools.
  ☆30Dec 17, 2025Updated last month
• l0n3m4n / bin2shell

  View on GitHub
  Convert binaries to shellcode (C, C#, CPP, ASM, BOF loader, PS to b64)
  ☆18Jun 6, 2025Updated 8 months ago
• wunderwuzzi23 / gospray

  View on GitHub
  Active Directory Password Spray Testing Utility in Go
  ☆18Mar 22, 2024Updated last year
• Patrick-DE / C2-logparser

  View on GitHub
  Parses logs created by Cobalt Strike or Brute Ratel and creates an SQLite DB which can be used to create custom reports.
  ☆24Jan 15, 2026Updated last month
• KickedDroid / bof_oxide

  View on GitHub
  A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.
  ☆74Aug 24, 2025Updated 5 months ago
• m8sec / EAPrimer

  View on GitHub
  C# project to Reflectively load .Net assemblies in memory
  ☆19Jun 19, 2024Updated last year
• wsummerhill / IPv4Fuscation-Encrypted

  View on GitHub
  ☆20Mar 21, 2024Updated last year
• Und3rf10w / CobaltStrikeBOFs

  View on GitHub
  Beacon Object Files used for Cobalt Strike
  ☆19Jul 18, 2023Updated 2 years ago
• scottctaylor12 / Red-Lambda

  View on GitHub
  Leveraging AWS Lambda Function URLs for C2 Redirection
  ☆45Aug 30, 2023Updated 2 years ago
• melotic / nanostorm

  View on GitHub
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆21Dec 15, 2024Updated last year
• stormshield / HiveSwarming

  View on GitHub
  Convert .reg to registry hive and reciprocally, without elevation
  ☆81Feb 9, 2026Updated last week
• The-Login / scanSQL

  View on GitHub
  Merge & query nmap and nessus reports via SQL directly in your browser!
  ☆20Jan 18, 2022Updated 4 years ago
• soteria-security / AzureInspect

  View on GitHub
  A series of PowerShell scripts to automate the assessment of Azure IaaS security
  ☆21Oct 30, 2024Updated last year
• mobdk / WinSpoof

  View on GitHub
  Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code
  ☆24Mar 13, 2023Updated 2 years ago
• francesco-ficarola / cerberus

  View on GitHub
  Cerberus is another simple stressing tool simulating DDoS attacks.
  ☆21Mar 13, 2025Updated 11 months ago
• rvrsh3ll / SharpFruit

  View on GitHub
  A C# penetration testing tool to discover low-haning web fruit via web requests.
  ☆91May 26, 2022Updated 3 years ago
• ibaiC / FriendlyFireBOF

  View on GitHub
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆57Apr 14, 2025Updated 10 months ago
• silentwarble / hbin_template

  View on GitHub
  Post-Ex BOF tooling for Hannibal
  ☆24Nov 20, 2024Updated last year
• NoF0rte / slack-slurp

  View on GitHub
  Pentesting post exploitation tool for slack
  ☆31Nov 15, 2025Updated 3 months ago
• KingOfTheNOPs / Get-NetNTLM

  View on GitHub
  Internal Monologue BOF
  ☆79Dec 28, 2024Updated last year
• 0rigen / SharePwn

  View on GitHub
  SharePoint Security Auditor
  ☆21Jan 16, 2016Updated 10 years ago
• zimnyaa / grpcssh

  View on GitHub
  A simple reverse ssh/proxy implant PoC for *nix systems.
  ☆57Jul 5, 2024Updated last year
• HackLike-co / Cloak

  View on GitHub
  Generate Secure, Polymorphic, Evasive (lol) Payloads
  ☆29Oct 2, 2025Updated 4 months ago
• SecurityRiskAdvisors / ATTiRe

  View on GitHub
  Attack Tool Timing and Reporting - Structured Attack Logging Format
  ☆22Nov 4, 2022Updated 3 years ago
• ColeHouston / theHandler-BOF

  View on GitHub
  Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.
  ☆38Aug 5, 2025Updated 6 months ago
• vysecurity / OffensiveLAM

  View on GitHub
  A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…
  ☆26Feb 29, 2024Updated last year
• ashirt-ops / aterm

  View on GitHub
  It records your terminal, then lets you upload to ASHIRT
  ☆29Updated this week
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year