EDR & Antivirus Bypass to Gain Shell Access
☆247Sep 30, 2024Updated last year
Alternatives and similar repositories for EDR-Antivirus-Bypass-to-Gain-Shell-Access
Users that are interested in EDR-Antivirus-Bypass-to-Gain-Shell-Access are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…☆387Apr 26, 2025Updated last year
- Analyse MSI files for vulnerabilities☆143Aug 30, 2024Updated last year
- Windows Administrator level Implant.☆50Sep 28, 2024Updated last year
- HookChain: A new perspective for Bypassing EDR Solutions☆608Jan 5, 2025Updated last year
- Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…☆520Jun 9, 2026Updated 2 weeks ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆185May 19, 2025Updated last year
- ☆321Jul 6, 2022Updated 3 years ago
- Hacking Windows through iTunes - Local Privilege Escalation 0-day☆98Oct 4, 2024Updated last year
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆238Feb 12, 2025Updated last year
- Nameless C2 - A C2 with all its components written in Rust☆285Sep 26, 2024Updated last year
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆293May 27, 2024Updated 2 years ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆453Jun 10, 2026Updated 2 weeks ago
- Simulate the behavior of AV/EDR for malware development training.☆567Feb 15, 2024Updated 2 years ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Oct 9, 2024Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Evasive shellcode loader☆398Oct 17, 2024Updated last year
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆475Aug 2, 2024Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Aug 20, 2023Updated 2 years ago
- Docker container for running CobaltStrike 4.10☆38Sep 18, 2024Updated last year
- Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operation…☆192Sep 8, 2024Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆87Oct 18, 2024Updated last year
- CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability☆146Jan 13, 2025Updated last year
- Online-Crawler-Wayback-Machine☆27Oct 15, 2024Updated last year
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆208Dec 25, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆75Jan 6, 2026Updated 5 months ago
- A Tool that aims to evade av with binary padding☆161Jun 28, 2024Updated 2 years ago
- فایل ها و فیلم های ورکشاپ ردتیم 2024 با هانت لرن☆34Sep 15, 2024Updated last year
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆51Jan 12, 2025Updated last year
- Kooky cURL-powered replacement for reverse shell via /dev/tcp☆82Jun 13, 2026Updated 2 weeks ago
- ☆42Sep 28, 2024Updated last year
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer☆552Feb 13, 2024Updated 2 years ago
- Repo for all my exploits/PoCs☆52May 6, 2025Updated last year
- ☆336Sep 21, 2025Updated 9 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Dump cookies and credentials directly from Chrome/Edge process memory☆1,469Apr 9, 2026Updated 2 months ago
- A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…☆359Oct 7, 2024Updated last year
- Advanced Telegram x Discord C2, great for data Exfitration and Network evasion 🔷☆87Feb 22, 2025Updated last year
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆170Sep 12, 2024Updated last year
- Tool to remotely dump secrets from the Windows registry☆530Jun 8, 2026Updated 2 weeks ago
- Deploy stealthy reverse shells using advanced process hollowing with GhostStrike – a C++ tool for ethical hacking and Red Team operations…☆821Sep 3, 2024Updated last year
- Auto exploitation tool for CVE-2024-24401.☆36Sep 7, 2024Updated last year