Terminate AV/EDR processes by exploiting the vulnerable NsecSoft driver
☆33Sep 15, 2025Updated 6 months ago
Alternatives and similar repositories for ValleyTerminator
Users that are interested in ValleyTerminator are comparing it to the libraries listed below
Sorting:
- BYOVD hunter to help prioritize windows drivers worth manual analysis☆125Aug 19, 2025Updated 6 months ago
- Crystal Palace RDLL loader for Adaptix C2 with Ekko sleep obfuscation, IAT hooking via PICO, and per-section permission restoration☆80Mar 8, 2026Updated last week
- Python port of Pipal for password analytics☆22Oct 3, 2023Updated 2 years ago
- Avocado is a powerful C2 framework written in Python with stageless implants in Rust. Avocado's implant runs seamlessly on both Linux and…☆27Feb 15, 2026Updated last month
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆132Sep 4, 2025Updated 6 months ago
- maldev obviously☆28May 5, 2025Updated 10 months ago
- Fast covert timing channel communication for inter-process and inter-processor communication on Windows systems.☆69Nov 15, 2025Updated 4 months ago
- Write-ups and proof of concepts of design and implementaion of various modern malwares.☆29Feb 22, 2023Updated 3 years ago
- A modern GoPhish fork with improved tracking accuracy and smarter detection.☆89Feb 16, 2026Updated last month
- NtCreateUserProcess with CsrClientCallServer for mainstream Windows x64 version☆44Jul 16, 2024Updated last year
- A modern, web-based GUI for Hashcat that provides an intuitive interface for hash cracking operations, featuring real-time monitoring, pe…☆34Mar 5, 2025Updated last year
- Learn MongoDB from absolute basics.☆57Jan 16, 2026Updated 2 months ago
- SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…☆263Feb 2, 2026Updated last month
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆79Aug 25, 2025Updated 6 months ago
- Direct access to NTFS volumes☆291Sep 9, 2025Updated 6 months ago
- Erebus is an Initial Access wrapper for the Mythic Command & Control Server. It converts existing Mythic shellcode into payloads specific…☆112Feb 21, 2026Updated 3 weeks ago
- An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD☆49Mar 10, 2025Updated last year
- Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…☆18Aug 13, 2025Updated 7 months ago
- 🌀 an Interactive Terminal for AI (interminai) - A PTY proxy enabling AI interaction with interactive CLI applications like vim, git reba…☆45Feb 9, 2026Updated last month
- ☆10Mar 11, 2024Updated 2 years ago
- Help red teams find opsec processes during engagements☆42Dec 7, 2024Updated last year
- Text file containing NSFW words aggregated from various sources.☆10Aug 23, 2020Updated 5 years ago
- NTAPI hook bypass with (semi) legit stack trace☆19May 9, 2023Updated 2 years ago
- Reverse engineered Amazon antibot system called AWSWAF. This also includes a FASTAPI to use it as an API. Used on sites like binance, hug…☆33Updated this week
- This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.☆295Nov 1, 2025Updated 4 months ago
- An Ansible collection that installs an ADFS deployment with optional configurations.☆44Dec 19, 2025Updated 2 months ago
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆438Jun 27, 2025Updated 8 months ago
- Convert .reg to registry hive and reciprocally, without elevation☆84Feb 18, 2026Updated last month
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Open Source C&C Specification☆277Feb 28, 2025Updated last year
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆191Oct 29, 2025Updated 4 months ago
- EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.☆809Nov 1, 2025Updated 4 months ago
- Shellcode execution via x86 inline assembly based on MSVC syntax☆17Apr 26, 2023Updated 2 years ago
- buddycloud static site generation and gh_pages☆18Sep 8, 2016Updated 9 years ago
- Execute Shellcode And Other Goodies From MMC☆14Jun 17, 2015Updated 10 years ago
- CLI version of NetworkMiner (https://www.netresec.com/?page=NetworkMiner)☆13Dec 1, 2025Updated 3 months ago
- Simple C++ Reverse Shell☆13Nov 22, 2022Updated 3 years ago
- Analysis of techniques used by Conti ransomware affiliates from their leaked manuals.☆19Aug 29, 2021Updated 4 years ago
- WPF helper library☆14Apr 6, 2019Updated 6 years ago