Alien3407's starred repositories
DarkWidow
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
reinschauer
it is very good
GlllPowerloader
绕过AV/EDR的代码例子(Code example to bypass AV/EDR)
PetitPotato
Local privilege escalation via PetitPotam (Abusing impersonate privileges).
CallstackSpoofingPOC
C++ self-Injecting dropper based on various EDR evasion techniques.
.NetConfigLoader
.net config loader
RecycledInjector
Native Syscalls Shellcode Injector
Awesome-AV-EDR-XDR-Bypass
Awesome AV/EDR/XDR Bypass Tips
RemoteShellcodeExec
Execute shellcode from a remote-hosted bin file using Winhttp.
ProcessStomping
A variation of ProcessOverwriting to execute shellcode on an executable's section
SharpReflectivePEInjection
reflectively load and execute PEs locally and remotely bypassing EDR hooks
BypassAV-Online
An online AV evasion platform written in Springboot (Golang, Nim, C) supports inline, local and remote loading of Shellocde methods.
ModuleShifting
Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctypes
Netflix-cookie-checker
Netflix cookie checker created using python Requests. 🌟 Star to support our work!
DynamicEarlyBird
An example of using Dynamic Invoke to Inject Shellcode using the Early Bird Method.
BypassAV_Framework
Test antiviruses
AesEncryptDecrypt
Shellcode Encryption/Decryption using Windows CNG API
Process_Injection
Ispirato a Shellter, questo script python sfrutta il potere di ctypes per tentare un attacco di tipo process injection
XWorm-V5.0
XWorm V5.0 Cracked
Npsso-API-Checker
PSN NPSSO LOGIN
KRBUACBypass
UAC Bypass By Abusing Kerberos Tickets