logangoins / KruegerLinks
Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC
☆379Updated 8 months ago
Alternatives and similar repositories for Krueger
Users that are interested in Krueger are comparing it to the libraries listed below
Sorting:
- EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.☆550Updated last week
- AV/EDR Lab environment setup references to help in Malware development☆405Updated 7 months ago
- Kill AV/EDR leveraging BYOVD attack☆374Updated 2 years ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆313Updated last year
- ☆403Updated 9 months ago
- Find potential DLL Sideloads on your windows computer☆213Updated 8 months ago
- A tool to transform Chromium browsers into a C2 Implant☆475Updated last month
- Open Source C&C Specification☆266Updated 7 months ago
- ☆322Updated last month
- Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…☆247Updated 5 months ago
- Evasive shellcode loader☆388Updated 11 months ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆339Updated last week
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆243Updated 4 months ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆284Updated 2 months ago
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆509Updated 4 months ago
- Extract and execute a PE embedded within a PNG file using an LNK file.☆446Updated 11 months ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆608Updated last year
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆434Updated last year
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆351Updated 3 months ago
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST☆193Updated last year
- A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.☆426Updated last year
- .net config loader☆344Updated last year
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆579Updated 9 months ago
- Simulate the behavior of AV/EDR for malware development training.☆539Updated last year
- 🔥📜 Forbidden collection of Red Team sorcery 📜🔥☆204Updated last week
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆297Updated 5 months ago
- Nameless C2 - A C2 with all its components written in Rust☆275Updated last year
- Materials for the workshop "Red Team Ops: Havoc 101"☆387Updated 11 months ago
- A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…☆330Updated 11 months ago
- ☆287Updated 2 years ago