myzxcg / RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
☆998Updated 8 months ago
Alternatives and similar repositories for RealBlindingEDR:
Users that are interested in RealBlindingEDR are comparing it to the libraries listed below
- 一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.☆452Updated 5 months ago
- Windows Elevation(持续更新)☆646Updated 3 years ago
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆707Updated 3 years ago
- darkPulse是一个用go编写的shellcode Packer,用于生成各种各样的shellcode loader,免杀火绒,360�核晶等国内常见杀软。☆825Updated 4 months ago
- POCs for Shellcode Injection via Callbacks☆400Updated 3 years ago
- 免杀,bypassav,免杀框架,nim,shellcode,使用nim编写的shellcode加载器☆648Updated this week
- CPP AV/EDR Killer☆375Updated last year
- CobaltStrike beacon written in golang☆406Updated last year
- Alternative Shellcode Execution Via Callbacks☆1,507Updated 2 years ago
- Loading BOF & ShellCode without executable permission memory.☆368Updated 3 months ago
- Some demos to bypass EDRs or AVs by 78itsT3@m☆351Updated 2 years ago
- 绕3环的shellcode免杀框架☆566Updated 3 years ago
- SysWhispers on Steroids - AV/EDR evasion via direct system calls.☆1,377Updated 6 months ago
- New generation of wmiexec.py☆1,052Updated 2 months ago
- Windows 权限提升 BadPotato☆823Updated 4 years ago
- C2-下一代RAT☆351Updated 6 months ago
- Open repository for learning dynamic shellcode loading (sample in many programming languages)☆237Updated 3 weeks ago
- not a reverse-engineered version of the Cobalt Strike Beacon☆349Updated 10 months ago
- Use ICMLuaUtil to Bypass UAC!☆518Updated 4 years ago
- RDL的堆溢出导致的RCE☆212Updated 6 months ago
- 助力每一位RT队员,快速生成免杀木马☆746Updated 10 months ago
- 牛屎花 一款基于WEB界面的远程主机管理工具☆808Updated last year
- shellcode免杀加载器,使用go实现,免杀bypass火绒、360、核晶、def等主流杀软☆830Updated last year
- PrintNotifyPotato☆513Updated 2 years ago
- Syscall免杀☆506Updated 8 months ago
- Pillager是一个适用于后渗透期间的信息收集工具☆1,055Updated 5 months ago
- 免杀技术大杂烩---乱拳也打不死老师傅☆1,076Updated 3 years ago
- This is my FirstRepository☆320Updated last year
- 免杀远控木马源码整理开源(银狐 winos 大灰狼 gh0st) Rat☆307Updated last month
- RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.☆1,438Updated 6 months ago