BloodyAv is Custom Shell Code loader to Bypass Av and Edr.
☆15Mar 21, 2022Updated 4 years ago
Alternatives and similar repositories for BloodyAv
Users that are interested in BloodyAv are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Direct syscalls Injection to bypass AV/EDR☆11May 18, 2024Updated 2 years ago
- NTAPI hook bypass with (semi) legit stack trace☆18May 9, 2023Updated 3 years ago
- golang uuid-shellcode加载器,分离执行,可直接把shellcode写入程序。☆15Aug 12, 2021Updated 4 years ago
- Event Tracing for Windows EDR bypass in Rust (usermode)☆41Jun 9, 2024Updated 2 years ago
- Indirect Syscall invocation via thread hijacking☆26May 5, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- record some AD security and Red Team contents☆14Dec 10, 2019Updated 6 years ago
- Rex Shellcode Loader for AV/EDR evasion☆36Apr 7, 2024Updated 2 years ago
- Groovy Post Exploitation☆20Oct 21, 2024Updated last year
- C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.☆30Nov 9, 2021Updated 4 years ago
- Bypass windows eventlogs & Sysmon☆19Aug 24, 2021Updated 4 years ago
- Screencast code, script and chicken drawings for the OAuth course☆38Aug 31, 2021Updated 4 years ago
- C# .NET Assembly for interacting with File Object DACLs☆45Apr 3, 2020Updated 6 years ago
- EQGRP: Replicating DarkPulsar, an DLL capable of hooking Security Package Method Tables on the Heap!☆16Oct 11, 2020Updated 5 years ago
- BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆17Jul 22, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Bypassing AV, EDR, Application Whitelisting and ASR Rules☆13Apr 18, 2023Updated 3 years ago
- Tools developed during the personal learning process☆22Nov 16, 2021Updated 4 years ago
- Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses☆39Dec 9, 2020Updated 5 years ago
- springFramework_CVE-2022-22965_RCE简单利用☆26Apr 7, 2022Updated 4 years ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆16Jan 7, 2023Updated 3 years ago
- some AV / EDR / analysis studies☆10May 21, 2023Updated 3 years ago
- Bypass EDR Create TaskServers☆38Dec 24, 2022Updated 3 years ago
- cobalt strike 自用脚本☆29Oct 29, 2020Updated 5 years ago
- Code go audit tool with ai☆23Jan 13, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A dynamic HTTP/S stager that lets one shellcode loader be reused for different encrypted payloads - no rebuilds.☆20Oct 1, 2025Updated 8 months ago
- Aggressor script that gets the latest commands from CobaltStrikes web site and creates an aggressor script based on tool options.☆23Oct 6, 2021Updated 4 years ago
- EDR/AV Simulation for Malware Development☆13Oct 21, 2023Updated 2 years ago
- PrimitiveInjection by using Read, Write and Allocation Primitives.☆56Jun 21, 2025Updated last year
- ☆89Jun 29, 2021Updated 4 years ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution☆51Apr 22, 2024Updated 2 years ago
- Bypass EDR(Endpoint Detection and Response) environment to write Behinder jsp webshell onto webserver☆13Dec 27, 2023Updated 2 years ago
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆21Feb 8, 2024Updated 2 years ago
- frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can …☆61Apr 18, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆16Jan 10, 2024Updated 2 years ago
- EDR Detector that can find what kind of endpoint solution is being used according to drivers in the system.☆95Nov 5, 2021Updated 4 years ago
- Transparently call NTAPI via Halo's Gate with indirect syscalls.☆13Apr 26, 2024Updated 2 years ago
- PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are rela…☆45Jul 9, 2025Updated 11 months ago
- 批量导出CSDN博客并转为hexo博客样式☆11Mar 18, 2021Updated 5 years ago
- A tool to assist DLL hijacking via the Havoc GUI☆14Jan 9, 2024Updated 2 years ago
- Simple Aggressor Scripts for Cobalt Strike☆13Sep 24, 2020Updated 5 years ago