This program detects if any security software (AV, EDR, XDR, firewall, etc.) is running on the system. The program searches the list of running processes and compares their names with a predefined list of known security software processes.
☆51Mar 16, 2026Updated 2 months ago
Alternatives and similar repositories for av_detect
Users that are interested in av_detect are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- GitHubApi CVE Poc监控工具☆14Jan 23, 2026Updated 4 months ago
- Evasive loader to bypass static detection☆60Jan 15, 2024Updated 2 years ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆75Feb 11, 2024Updated 2 years ago
- Golang implement winrm client with pass the hash☆32Apr 29, 2024Updated 2 years ago
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆14Dec 30, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- XOR 加密 分离免杀☆68Dec 15, 2023Updated 2 years ago
- A step-by-step walkthrough of how to write a Client and a Driver to communicate with each other and boost the priority of a thread.☆18Dec 12, 2023Updated 2 years ago
- ☆30Sep 1, 2023Updated 2 years ago
- A tool to assist DLL hijacking via the Havoc GUI☆14Jan 9, 2024Updated 2 years ago
- 在线安软识别☆12Aug 6, 2025Updated 9 months ago
- Kill Everything AV/EDR☆27Nov 18, 2024Updated last year
- Basic Psexec clone, but in golang.☆17Jul 2, 2022Updated 3 years ago
- A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.☆17Feb 3, 2025Updated last year
- From C to binary shellcode converter.☆58Nov 11, 2025Updated 6 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Bypassing AV, EDR, Application Whitelisting and ASR Rules☆13Apr 18, 2023Updated 3 years ago
- Attack Active Directory Trusts with a single tool☆13Jan 15, 2025Updated last year
- CaveCarver - PE backdooring tool which utilizes and automates code cave technique☆233Apr 17, 2023Updated 3 years ago
- Modern PIC implant for Windows (64 & 32 bit)☆107Jul 23, 2025Updated 10 months ago
- A multi coroutine concurrent batch URL survival detection tool written in Go, with concurrency determined by CPU by default.一个go编写的多协程并发批…☆12Jan 9, 2024Updated 2 years ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆16Jan 7, 2023Updated 3 years ago
- some AV / EDR / analysis studies☆10May 21, 2023Updated 3 years ago
- demo unhooking functions in ntdll☆28Jul 15, 2025Updated 10 months ago
- 一个简单的指纹识别小工具☆21Oct 23, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- ☆43Feb 18, 2025Updated last year
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆98Jan 2, 2026Updated 4 months ago
- NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.☆31Jan 21, 2024Updated 2 years ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆102Mar 27, 2025Updated last year
- Get sql server connection configuration information☆28Aug 26, 2024Updated last year
- 分割小工具,可分割木马,一键生成写入、合并、追加命令☆164Jan 5, 2024Updated 2 years ago
- vehsyscall:a syscall project that may bypass EDR☆61Mar 1, 2024Updated 2 years ago
- Research of modifying exported function names at runtime (C/C++, Windows)☆18May 28, 2024Updated 2 years ago
- This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)☆50May 8, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆506Dec 19, 2023Updated 2 years ago
- EDR/AV Simulation for Malware Development☆13Oct 21, 2023Updated 2 years ago
- bring your own clean ntdll (or other MS dlls)☆29Jul 14, 2025Updated 10 months ago
- A lexer and parser for Sleep☆20Feb 20, 2026Updated 3 months ago
- Research into WinSxS binaries and finding hijackable paths☆31Dec 7, 2025Updated 5 months ago
- SOCKS5 proxy tool that uses Azure Storage services as a means of communication.☆353Mar 21, 2026Updated 2 months ago
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Dec 11, 2023Updated 2 years ago