Stars
1472
Forks
233
Language
Assembly
Last Updated
May 31, 2024
Similar Repos
Repo | Language | Stars | Description | Updated At |
---|---|---|---|---|
Assembly | 1527 | AV/EDR evasion via direct system calls. | Apr 24, 2023 | |
Assembly | 26 | AV/EDR evasion via direct system calls. | Jun 18, 2022 | |
Assembly | 7 | AV/EDR evasion via direct system calls. | Aug 05, 2022 | |
None | 2 | AV/EDR evasion via direct system calls. | Feb 12, 2022 | |
None | 2 | AV/EDR evasion via direct system calls. | Jan 11, 2023 | |
None | 6 | SysWhispers on Steroids - AV/EDR evasion via direct system calls. | Apr 21, 2022 | |
Python | 563 | SysWhispers on Steroids - AV/EDR evasion via direct system calls. | Aug 22, 2022 | |
None | 3 | SysWhispers on Steroids - AV/EDR evasion via direct system calls. | Jun 18, 2022 | |
None | 2 | SysWhispers on Steroids - AV/EDR evasion via direct system calls. | Mar 08, 2022 | |
None | 3 | SysWhispers on Steroids - AV/EDR evasion via direct system calls. | Dec 30, 2023 | |
None | 2 | SysWhispers on Steroids - AV/EDR evasion via direct system calls. | Dec 01, 2023 | |
Assembly | 967 | Template-Driven AV/EDR Evasion Framework | Aug 30, 2022 | |
None | 3 | EDR Evasion - Combination of SwampThing - TikiTorch | Oct 20, 2020 | |
C++ | 171 | Automated DLL Sideloading Tool With EDR Evasion Capabilities | Jun 21, 2023 | |
C | 118 | x64 Assembly HalosGate direct System Caller to evade EDR UserLand hooks | Aug 17, 2022 | |
Assembly | 2 | indirect syscalls for AV/EDR evasion in Go assembly | Apr 25, 2023 | |
C | 3 | Direct syscalls Injection to bypass AV/EDR | Jul 26, 2022 | |
Python | 421 | Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion) | Apr 24, 2023 | |
C++ | 15 | Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion … | Mar 23, 2023 | |
Assembly | 138 | Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via … | Aug 04, 2022 | |
Go | 60 | Evasive shellcode loader that combines multiple techniques for AV/EDR evasion | Apr 25, 2023 | |
C | 1015 | LSASS memory dumper using direct system calls and API unhooking. | Sep 04, 2022 | |
None | 2 | LSASS memory dumper using direct system calls and API unhooking. | Aug 05, 2022 | |
None | 8 | Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind | Mar 16, 2022 | |
C | 299 | Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind | Apr 29, 2023 | |
None | 2 | Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind | May 18, 2022 | |
C# | 196 | ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol … | Sep 30, 2022 | |
Python | 106 | Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs | Apr 01, 2023 | |
Python | 244 | EV: IDS Evasion via Packet Manipulation | Aug 01, 2022 | |
C++ | 24 | Example of hijacking system calls via function pointer tables | Mar 05, 2023 | |
Pascal | 868 | evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR) | Jun 30, 2022 | |
Assembly | 240 | Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) | Sep 03, 2022 | |
Rust | 5 | An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written … | Mar 15, 2023 | |
Nim | 4 | A dive into shellcode injection and EDR evasion techniques in nim (but with a punny … | Apr 22, 2023 | |
C++ | 7 | Malware AV evasion via RC4 encrypt. C++ example | Nov 28, 2022 | |
JavaScript | 14 | RPC calls via postMessage | Aug 31, 2021 | |
Rust | 5 | Novusk system calls | Dec 24, 2021 | |
C++ | 26 | Malware AV evasion via disable Windows Defender (Registry). C++ | Mar 31, 2023 | |
C | 4 | Malware AV evasion via Madryga algorithm encryption. C++ implementation | Mar 23, 2023 | |
Java | 6 | Utilities to generate direct-invoking stubs, avoiding reflective calls. | Aug 13, 2019 | |
None | 3 | Télévision en Ligne Direct Via Navigateur | Mar 23, 2023 | |
C | 3 | Malware AV evasion - part 14. Encryption/decryption via A5/1 | Apr 28, 2023 | |
Rust | 10 | Linux system calls study | Jul 11, 2020 | |
C | 198 | A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable … | Sep 04, 2022 | |
TypeScript | 9 | Electron IPC via simple method calls | Apr 27, 2023 | |
None | 313 | Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon | Apr 09, 2023 | |
Go | 265 | Authenticator via oauth2, direct, email and telegram | Sep 18, 2022 | |
Shell | 2 | Direct switching windows via hotkeys for Gnome. | Oct 05, 2013 | |
C | 6 | Malware AV evasion trick: payload encoding via Z85 algorithm. C++ implementation | Nov 28, 2022 | |
Perl | 4 | System V IPC constants and system calls | Nov 22, 2020 |