netero1010 / EDRSilencer

Related projects ⓘ

Alternatives and complementary repositories for EDRSilencer

• Xacone / BestEdrOfTheMarket
  Little user-mode AV/EDR evasion lab for training & learning purposes
  ☆994Updated 6 months ago
• wavestone-cdt / EDRSandblast
  ☆1,519Updated 2 months ago
• The-Viper-One / PsMapExec
  A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec
  ☆880Updated last month
• nickvourd / Windows-Local-Privilege-Escalation-Cookbook
  Windows Local Privilege Escalation Cookbook
  ☆967Updated 7 months ago
• login-securite / DonPAPI
  Dumping DPAPI credz remotely
  ☆991Updated last week
• BloodHoundAD / SharpHound
  C# Data Collector for BloodHound
  ☆748Updated 3 weeks ago
• tkmru / awesome-edr-bypass
  Awesome EDR Bypass Resources For Ethical Hacking
  ☆920Updated this week
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,148Updated last year
• 0xHossam / Killer
  Killer tool is designed to bypass AV/EDR security tools using various evasive techniques.
  ☆753Updated 4 months ago
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆952Updated 10 months ago
• CravateRouge / bloodyAD
  BloodyAD is an Active Directory Privilege Escalation Framework
  ☆1,224Updated this week
• fortra / nanodump
  The swiss army knife of LSASS dumping
  ☆1,786Updated last month
• ZeroMemoryEx / Terminator
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆923Updated last year
• GhostPack / Certify
  Active Directory certificate abuse.
  ☆1,510Updated 2 months ago
• assume-breach / Home-Grown-Red-Team
  ☆673Updated 7 months ago
• p0dalirius / Coercer
  A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
  ☆1,790Updated 3 weeks ago
• Mr-Un1k0d3r / EDRs
  ☆2,012Updated last year
• rasta-mouse / ThreatCheck
  Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
  ☆1,041Updated 5 months ago
• Meckazin / ChromeKatz
  Dump cookies and credentials directly from Chrome/Edge process memory
  ☆1,034Updated 2 weeks ago
• c3c / ADExplorerSnapshot.py
  ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping …
  ☆887Updated 2 weeks ago
• ly4k / Certipy
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆2,401Updated 2 months ago
• Greenwolf / ntlm_theft
  A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
  ☆995Updated 5 months ago
• SpecterOps / Nemesis
  An offensive data enrichment pipeline
  ☆613Updated last month
• Accenture / Spartacus
  Spartacus DLL/COM Hijacking Toolkit
  ☆991Updated 9 months ago
• naksyn / Pyramid
  a tool to help operate in EDRs' blind spots
  ☆652Updated 7 months ago
• trustedsec / CS-Situational-Awareness-BOF
  Situational Awareness commands implemented using Beacon Object Files
  ☆1,256Updated 2 months ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,403Updated last year
• SpecterOps / BloodHound
  Six Degrees of Domain Admin
  ☆1,123Updated this week
• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,139Updated last year
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,029Updated last month