myzxcg/RealBlindingEDR external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

myzxcg/RealBlindingEDR

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/myzxcg/RealBlindingEDR)

Close

myzxcg / RealBlindingEDRView on GitHubMore

• External links
• Readme badge

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

☆1,299Jun 21, 2024Updated last year

Alternatives and similar repositories for RealBlindingEDR

Users that are interested in RealBlindingEDR are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Neo-Maoku / SearchAvailableExe

  View on GitHub
  寻找可利用的白文件
  ☆559Aug 18, 2025Updated 7 months ago
• qwqdanchun / Pillager

  View on GitHub
  Pillager是一个适用于后渗透期间的信息收集工具
  ☆1,273Sep 7, 2024Updated last year
• antonioCoco / SspiUacBypass

  View on GitHub
  Bypassing UAC with SSPI Datagram Contexts
  ☆464Sep 24, 2023Updated 2 years ago
• netero1010 / EDRSilencer

  View on GitHub
  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …
  ☆1,831Nov 3, 2024Updated last year
• MaorSabag / TrueSightKiller

  View on GitHub
  CPP AV/EDR Killer
  ☆480Nov 28, 2023Updated 2 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• lintstar / CS-AutoPostChain

  View on GitHub
  基于 OPSEC 的 CobaltStrike 后渗透自动化链
  ☆452Mar 11, 2024Updated 2 years ago
• evilashz / PigScheduleTask

  View on GitHub
  添加计划任务方法集合
  ☆310Aug 6, 2023Updated 2 years ago
• yj94 / BinarySpy

  View on GitHub
  一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.
  ☆564May 30, 2025Updated 9 months ago
• WKL-Sec / HiddenDesktop

  View on GitHub
  HVNC for Cobalt Strike
  ☆1,309Dec 7, 2023Updated 2 years ago
• MalwareTech / EDR-Preloader

  View on GitHub
  An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
  ☆544Feb 13, 2024Updated 2 years ago
• 1y0n / AVKiller

  View on GitHub
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆138Dec 26, 2023Updated 2 years ago
• Dec0ne / HWSyscalls

  View on GitHub
  HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
  ☆721Jul 19, 2023Updated 2 years ago
• huaigu4ng / SysWhispers3WinHttp

  View on GitHub
  Syscall免杀
  ☆510Jun 21, 2024Updated last year
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,470Apr 25, 2024Updated last year
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• tdragon6 / Supershell

  View on GitHub
  Supershell C2 远控平台，基于反向SSH隧道获取完全交互式Shell
  ☆1,778Sep 26, 2023Updated 2 years ago
• INotGreen / XiebroC2

  View on GitHub
  渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理
  ☆1,391Feb 28, 2025Updated last year
• clownfive / CppDevShellcode

  View on GitHub
  使用Visral Studio开发ShellCode
  ☆239Oct 11, 2023Updated 2 years ago
• fortra / No-Consolation

  View on GitHub
  A BOF that runs unmanaged PEs inline
  ☆687Oct 23, 2024Updated last year
• 0xEr3bus / PoolPartyBof

  View on GitHub
  A beacon object file implementation of PoolParty Process Injection Technique.
  ☆439Dec 21, 2023Updated 2 years ago
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆555Feb 1, 2024Updated 2 years ago
• StarfireLab / SharpWeb

  View on GitHub
  一个浏览器数据（密码|历史记录|Cookie|书签|下载记录）的导出工具，支持主流浏览器。
  ☆792Nov 15, 2024Updated last year
• wavestone-cdt / EDRSandblast

  View on GitHub
  ☆1,800Aug 30, 2024Updated last year
• INotGreen / SharpThief

  View on GitHub
  一键提取exe的图标、嵌入图标、资源信息、版本信息、修改时间、数字签名，降低程序熵值
  ☆432Dec 17, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• fdx-xdf / darkPulse

  View on GitHub
  darkPulse是一个用go编写的shellcode Packer，用于生成各种各样的shellcode loader，免杀火绒，360核晶等国内常见杀软。
  ☆884Oct 18, 2024Updated last year
• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,166Aug 21, 2025Updated 7 months ago
• P001water / yuze

  View on GitHub
  A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具，支持正向，反向socks5代理隧道的搭建，支持跨平台使用。
  ☆468Mar 2, 2025Updated last year
• ZeroMemoryEx / Terminator

  View on GitHub
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆1,046Jun 20, 2023Updated 2 years ago
• wangfly-me / LoaderFly

  View on GitHub
  助力每一位RT队员，快速生成免杀木马
  ☆829Apr 17, 2024Updated last year
• Ridter / atexec-pro

  View on GitHub
  Fileless atexec, no more need for port 445
  ☆406Mar 28, 2024Updated 2 years ago
• Z3ratu1 / geacon_plus

  View on GitHub
  CobaltStrike beacon written in golang
  ☆461Oct 13, 2023Updated 2 years ago
• zema1 / suo5

  View on GitHub
  高性能 HTTP 正向代理工具 | A high-performance http tunneling tool
  ☆2,689Feb 2, 2026Updated last month
• netero1010 / GhostTask

  View on GitHub
  A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.
  ☆618Jan 2, 2025Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• aahmad097 / AlternativeShellcodeExec

  View on GitHub
  Alternative Shellcode Execution Via Callbacks
  ☆1,703Nov 11, 2022Updated 3 years ago
• wikiZ / RedGuard

  View on GitHub
  RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
  ☆1,560Aug 20, 2024Updated last year
• XiaoliChan / wmiexec-Pro

  View on GitHub
  New generation of wmiexec.py
  ☆1,275Updated this week
• SafeBreach-Labs / PoolParty

  View on GitHub
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,254Dec 11, 2023Updated 2 years ago
• klezVirus / SysWhispers3

  View on GitHub
  SysWhispers on Steroids - AV/EDR evasion via direct system calls.
  ☆1,602Jul 31, 2024Updated last year
• boku7 / BokuLoader

  View on GitHub
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,404Nov 22, 2023Updated 2 years ago
• mai1zhi2 / SharpBeacon

  View on GitHub
  CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
  ☆729Sep 1, 2021Updated 4 years ago