Movatterモバイル変換

Skip to content

#

bypass-edr

Here are 21 public repositories matching this topic...

Language:All

Filter by language

All21 C++5 Python4 C#3 PowerShell3 C1 Go1 HTML1 Pascal1 Rust1

Sort:Most stars

Sort options

Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

0xsp-SRD /mortar

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

evasion bypass-antivirus redteam-tools bypass-edr

UpdatedDec 21, 2023
Pascal

helviojunior /hookchain

HookChain: A new perspective for Bypassing EDR Solutions

bypass-edr hookchain evading-edr m4v3r1ck

UpdatedJan 5, 2025
C

HackerCalico /No_X_BOF

Loading BOF & ShellCode without executable permission memory.

rat shellcode bypass-av bypass-antivirus red-team antivirus-evasion bof bypass-edr

UpdatedOct 23, 2024
C++

HackerCalico /Magic_C2

Red Team C2 Framework with AV/EDR bypass capabilities.

rat bypass-av bypass-antivirus red-team antivirus-evasion c2 bypass-edr antivirus-bypass c2-framework

UpdatedFeb 12, 2025
Python

VirtualAlllocEx /Payload-Download-Cradles

This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR in context of download cradle detections.

payload bypass-antivirus antivirus-evasion bypass-edr edr-evasion

UpdatedJul 7, 2022
PowerShell

HackerCalico /RAT_Obfuscator

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

rat obfuscator shellcode bypass-av bypass-antivirus red-team antivirus-evasion bof bypass-edr

UpdatedNov 25, 2024
C++

TunnelGRE /Percino

Evasive Golang Loader

bypass-antivirus shellcode-loader process-hollowing bypass-edr

UpdatedJul 27, 2024
Go

HackerCalico /SkyShadow

Generate DLL Hijacking Payload in batches.

rat bypass-av bypass-antivirus red-team antivirus-evasion dll-hijacking bypass-edr

UpdatedAug 15, 2024
Python

VirtualAlllocEx /Taskschedule-Persistence-Download-Cradles

Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged

payload bypass-antivirus antivirus-evasion bypass-edr edr-evasion

UpdatedJul 7, 2022
HTML

Kara-4search /NewNtdllBypassInlineHook_CSharp

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

csharp pentesting shellcode pentest bypass bypass-antivirus shellcode-loader redteam filemapping bypass-edr

UpdatedSep 6, 2021
C#

SideloadFinder

roadwy /SideloadFinder

frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can later be weaponized during Red Team Operations to evade AV/EDR's.

bypass-antivirus dll-hijacking redteam edr-bypass bypass-edr dll-sideloading

UpdatedApr 18, 2023
Python

0xflux /Rust-Hells-Gate

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

rust malware rust-lang pentesting malware-research pentest offensive-security bypass-antivirus antivirus-evasion pentest-tool redteaming redteam redteam-tools edr-bypass bypass-edr edr-evasion antivirus-bypass hellsgate hells-gate

UpdatedJun 4, 2024
Rust

HackerCalico /SigLocator

Efficient RAT signature locator for bypassing AV/EDR, supporting static scanning and memory scanning.

signature rat shellcode bypass-av bypass-antivirus red-team antivirus-evasion bypass-edr

UpdatedOct 23, 2024
Python

xiosec /Terminator

PowerShell script to terminate protected processes such as anti-malware and EDRs.

in-memory bypass bypass-antivirus blueteam redteaming redteam win32-api redteam-tools hvci bypass-edr hvci-bypass gmer

UpdatedJun 9, 2023
PowerShell

ikermit /11Syscalls

Windows 11 Syscall table. Ready to use in direct syscall. Actively maintained.

syscalls hooking syscall-table ntdll edr windows-11 bypass-edr

UpdatedDec 4, 2021

Kara-4search /HellgateLoader_CSharp

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

csharp shellcode syscalls pentest bypass bypass-antivirus shellcode-loader redteam bypass-edr hellgate bypass-linehook

UpdatedJan 21, 2022
C#

HackerCalico /StackSpoofer_Macro

An easy-to-use and powerful Macro for Stack Spoofing.

rat bypass-av bypass-antivirus red-team antivirus-evasion bypass-edr stack-spoofing

UpdatedJan 8, 2025
C++

HackerCalico /ArpScan

ARP Scanner, a lightweight host-alive detection tool for OPSEC.

scanner rat arp-scan bypass-av bypass-antivirus arp-scanner red-team alive-check antivirus-evasion bof alive-hosts bypass-edr

UpdatedNov 17, 2024
C++

Oni-kuki /RC-Obfuscator

Just an obfuscation technique in a resource file in 2 possible formats

obfuscation educational bypass-antivirus ressources bypass-edr

UpdatedJan 13, 2025
C++

fuzzlove /byosi

Bring Your Own Scripting Interpreter - Custom Shell (PHP)

reverse-shell penetration-testing hacking-tool php-shell penetration-testing-tools bypass-edr byosi

UpdatedDec 3, 2024
PowerShell

Improve this page

Add a description, image, and links to thebypass-edr topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with thebypass-edr topic, visit your repo's landing page and select "manage topics."

[8]ページ先頭

©2009-2025 Movatter.jp