netero1010 / EDRSilencerLinks
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
☆1,684Updated 8 months ago
Alternatives and similar repositories for EDRSilencer
Users that are interested in EDRSilencer are comparing it to the libraries listed below
Sorting:
- EDR Lab for Experimentation Purposes☆1,289Updated this week
- ☆1,674Updated 10 months ago
- Awesome EDR Bypass Resources For Ethical Hacking☆1,240Updated last month
- The swiss army knife of LSASS dumping☆1,964Updated 9 months ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,190Updated last year
- C# Data Collector for BloodHound☆989Updated this week
- Dumping DPAPI credz remotely☆1,162Updated 3 months ago
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆983Updated 2 years ago
- Dominate Active Directory with PowerShell.☆1,009Updated 2 weeks ago
- Windows Local Privilege Escalation Cookbook☆1,145Updated 5 months ago
- BloodyAD is an Active Directory Privilege Escalation Framework☆1,791Updated 2 weeks ago
- Living Off The Land Drivers☆1,222Updated last week
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆2,022Updated 3 weeks ago
- Killer is a super simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆816Updated last year
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆1,451Updated last year
- A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Inte…☆969Updated last month
- evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)☆1,471Updated last year
- Dump cookies and credentials directly from Chrome/Edge process memory☆1,265Updated 7 months ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,237Updated last year
- ☆2,121Updated 2 years ago
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,257Updated last year
- Spartacus DLL/COM Hijacking Toolkit☆1,050Updated last year
- a tool to help operate in EDRs' blind spots☆742Updated 7 months ago
- Real fucking shellcode encryptor & obfuscator tool☆919Updated 3 weeks ago
- Some notes and examples for cobalt strike's functionality☆1,094Updated 3 years ago
- Active Directory certificate abuse.☆1,711Updated 11 months ago
- A set of fully-undetectable process injection techniques abusing Windows Thread Pools☆1,134Updated last year
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆1,596Updated 2 years ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆674Updated last month
- ☆499Updated last year