roadwy / RIP

Related projects: ⓘ

• optiv / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,711Updated last year
• klezVirus / inceptor
  Template-Driven AV/EDR Evasion Framework
  ☆1,575Updated 10 months ago
• Tylous / Limelighter
  A tool for generating fake code signing certificates or signing real ones
  ☆872Updated last year
• tanc7 / EXOCET-AV-Evasion
  EXOCET - AV-evading, undetectable, payload delivery tool
  ☆823Updated 2 years ago
• lockedbyte / CVE-2021-40444
  CVE-2021-40444 PoC
  ☆1,574Updated 2 years ago
• 0xsp-SRD / mortar
  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
  ☆1,393Updated 9 months ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,024Updated 2 years ago
• klezVirus / CVE-2021-40444
  CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit
  ☆794Updated 11 months ago
• nu11secur1ty / Windows10Exploits
  Microsoft » Windows 10 : Security Vulnerabilities
  ☆892Updated last year
• cube0x0 / CVE-2021-1675
  C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
  ☆1,830Updated 3 years ago
• 9emin1 / charlotte
  c++ fully undetected shellcode launcher ;)
  ☆962Updated 3 years ago
• Unknow101 / FuckThatPacker
  A simple python packer to easily bypass Windows Defender
  ☆626Updated 2 years ago
• optiv / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆1,154Updated last year
• fortra / nanodump
  The swiss army knife of LSASS dumping
  ☆1,738Updated 2 weeks ago
• aaaddress1 / PR0CESS
  some gadgets about windows process and ready to use :)
  ☆570Updated 11 months ago
• 0vercl0k / CVE-2021-31166
  Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
  ☆825Updated 3 years ago
• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆542Updated 5 months ago
• Dec0ne / KrbRelayUp
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,513Updated 2 years ago
• tihanyin / PSSW100AVB
  A list of useful Powershell scripts with 100% AV bypass (At the time of publication).
  ☆998Updated 2 years ago
• topotam / PetitPotam
  PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
  ☆1,794Updated last month
• phra / PEzor
  Open-Source Shellcode & PE Packer
  ☆1,812Updated 7 months ago
• frkngksl / Huan
  Encrypted PE Loader Generator
  ☆533Updated 3 years ago
• WithSecureLabs / C3
  Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…
  ☆1,500Updated last year
• Tylous / ZipExec
  A unique technique to execute binaries from a password protected zip
  ☆1,000Updated 2 years ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,394Updated last year
• byt3bl33d3r / ItWasAllADream
  A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
  ☆777Updated 4 months ago
• login-securite / lsassy
  Extract credentials from lsass remotely
  ☆2,022Updated 2 months ago
• jm33-m0 / emp3r0r
  Linux/Windows post-exploitation framework made by linux user
  ☆1,264Updated this week
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,370Updated 3 years ago