32 skills found · Page 1 of 2
klezVirus / InceptorTemplate-Driven AV/EDR Evasion Framework
T4y1oR / RingQ一款后渗透免杀工具,助力每一位像我这样的脚本小子快速实现免杀,支持bypass AV/EDR 360 火绒 Windows Defender Shellcode Loader
thomasxm / BOAZ BetaMultilayered AV/EDR Evasion Framework
0xHossam / KillerKiller is a super simple tool designed to bypass AV/EDR security tools using various evasive techniques and used by Patchwork group.
vxCrypt0r / VoidgateA technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfvenom) by performing on-the-fly decryption of individual encrypted assembly instructions, thus rendering memory scanners useless for that specific memory page.
hlldz / RefleXXionRefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
INotGreen / GlllPowerloader绕过AV/EDR的代码例子(Code example to bypass AV/EDR)
brosck / Awesome AV EDR XDR BypassAwesome AV/EDR/XDR Bypass Tips
VirtualAlllocEx / Payload Download CradlesThis are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR in context of download cradle detections.
NVISOsecurity / CobaltWhispersCobaltWhispers is an aggressor script that utilizes a collection of Beacon Object Files (BOF) for Cobalt Strike to perform process injection, persistence and more, leveraging direct syscalls (SysWhispers2) to bypass EDR/AV
0xsch1zo / NullGateLibrary that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
Haunted-Banshee / ErebusGateErebusGate for Nim Bypass AV/EDR
0xsh3llf1r3 / ColdWerCobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass
fsquirt / DamnCoffee一款简单的后渗透免杀加载器,Bypass AV/EDR
chainski / PandaLoaderA WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal builder.
vvswift / Bypass Protection0x00EDR & AV Bypass Arsenal— a comprehensive collection of tools, patches, and techniques for evading modern EDR and antivirus defenses.
ASP4RUX / BypassEDR AVNo description available
KiExitDispatcher / EDR XDR AV Bypass Shellcode LoaderBypassing Major EDR's with staged shellcode, custom getmodulehandleW and getprocaddress, veh syscalls & more.
p1d3er / Go2bypassGolang 写的免杀框架,通过系统调用等手法bypass AV/EDR
ByteWhite1x1 / EDR Bypass Disable PspNotifyEnableMaskA single byte modification in the kernel memory bypasses and disables all core functions of the AV/EDR security solutions
