Alternatives and similar repositories for RealBlindingEDR

Users that are interested in RealBlindingEDR are comparing it to the libraries listed below

• fdx-xdf / darkPulse
  darkPulse是一个用go编写的shellcode Packer，用于生成各种各样的shellcode loader，免杀火绒，360核晶等国内常见杀软。
  ☆876Updated last year
• yj94 / BinarySpy
  一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.
  ☆546Updated 6 months ago
• MaorSabag / TrueSightKiller
  CPP AV/EDR Killer
  ☆465Updated 2 years ago
• aahmad097 / AlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks
  ☆1,668Updated 3 years ago
• wikiZ / RedGuard
  RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
  ☆1,547Updated last year
• klezVirus / SysWhispers3
  SysWhispers on Steroids - AV/EDR evasion via direct system calls.
  ☆1,546Updated last year
• XiaoliChan / wmiexec-Pro
  New generation of wmiexec.py
  ☆1,233Updated last month
• Getshell / C2
  C2-下一代RAT
  ☆480Updated last year
• ReversingID / Shellcode-Loader
  Open repository for learning dynamic shellcode loading (sample in many programming languages)
  ☆272Updated 4 months ago
• YDHCUI / manjusaka
  牛屎花 一款基于WEB界面的远程主机管理工具
  ☆868Updated this week
• WKL-Sec / HiddenDesktop
  HVNC for Cobalt Strike
  ☆1,292Updated 2 years ago
• mai1zhi2 / SharpBeacon
  CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
  ☆731Updated 4 years ago
• Al1ex / WindowsElevation
  Windows Elevation(持续更新)
  ☆660Updated 3 years ago
• Z3ratu1 / geacon_plus
  CobaltStrike beacon written in golang
  ☆453Updated 2 years ago
• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,245Updated last year
• b1-team / superman
  🤖 Kill The Protected Process 🤖
  ☆439Updated last year
• BlackSnufkin / BYOVD
  BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055,).
  ☆478Updated 2 months ago
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,220Updated 2 years ago
• aeverj / NimShellCodeLoader
  免杀，bypassav，免杀框架，nim，shellcode，使用nim编写的shellcode加载器
  ☆670Updated 10 months ago
• CCob / BeaconEye
  Hunts out CobaltStrike beacons and logs operator command output
  ☆949Updated last year
• 0xlane / BypassUAC
  Use ICMLuaUtil to Bypass UAC!
  ☆595Updated 5 years ago
• b1nhack / rust-shellcode
  windows-rs shellcode loaders
  ☆383Updated last year
• knight0x07 / ImpulsiveDLLHijack
  C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…
  ☆545Updated 4 years ago
• qwqdanchun / Pillager
  Pillager是一个适用于后渗透期间的信息收集工具
  ☆1,245Updated last year
• chainreactors / malice-network
  Next Generation C2 Framework, IoM-server/client
  ☆398Updated last week
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD ) ( Microsoft Won )
  ☆968Updated 2 years ago
• 7BitsTeam / EDR-Bypass-demo
  Some demos to bypass EDRs or AVs by 78itsT3@m
  ☆359Updated 3 years ago
• BeichenDream / BadPotato
  Windows 权限提升 BadPotato
  ☆873Updated 5 years ago
• EgeBalci / sgn
  Shikata ga nai (仕方がない) encoder ported into go with several improvements
  ☆1,878Updated last year
• SaadAhla / FilelessPELoader
  Loading Remote AES Encrypted PE in memory , Decrypted it and run it
  ☆1,006Updated 2 years ago