j3h4ck / MiniEDRLinks
MiniEDR is a kernel-mode process monitor that logs creations & terminations via a named pipe. Built for research & learning, exploring Windows internals & EDR mechanisms!
☆16Updated 7 months ago
Alternatives and similar repositories for MiniEDR
Users that are interested in MiniEDR are comparing it to the libraries listed below
Sorting:
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆152Updated last year
- C2 Infrastructure Automation☆109Updated 3 months ago
- ☆322Updated last month
- A script to generate AV evaded(static) DLL shellcode loader with AES encryption.☆137Updated 5 months ago
- Find potential DLL Sideloads on your windows computer☆213Updated 8 months ago
- C# AV/EDR Killer using less-known driver (BYOVD)☆180Updated last year
- The different ways to dump lsass☆185Updated last month
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆243Updated 3 months ago
- ☆36Updated last month
- ☆76Updated 5 months ago
- Evade EDR's the simple way, by not touching any of the API's they hook.☆153Updated 7 months ago
- PowerShell Obfuscator☆206Updated 3 weeks ago
- Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…☆246Updated 5 months ago
- EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.☆245Updated last week
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆155Updated last month
- Python implementation of GhostPack's Seatbelt situational awareness tool☆265Updated 10 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆267Updated 2 months ago
- This comprehensive and central repository is designed for cybersecurity enthusiasts, researchers, and professionals seeking to stay ahead…☆131Updated 4 months ago
- ☆335Updated last month
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆284Updated last month
- EDR & Antivirus Bypass to Gain Shell Access☆245Updated 11 months ago
- A PoC for Early Cascade process injection technique.☆193Updated 7 months ago
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆106Updated 6 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆379Updated 8 months ago
- Ghosting-AMSI☆217Updated 5 months ago
- ShadowPhish is an advanced APT awareness toolkit designed to simulate real-world phishing, malware delivery, deepfakes, smishing/vishing,…☆207Updated 5 months ago
- ☆161Updated 6 months ago
- A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts☆164Updated 2 months ago
- RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…☆211Updated 6 months ago
- ☆218Updated 5 months ago